A team of researchers from a security firm has exposed a Linux-based malware, dubbed VoidLink, which is specifically targeting cloud-hosted servers. This sophisticated malware is composed of more than 30 distinct modules, granting attackers the flexibility to tailor functions according to their needs and enabling them to identify mainstream cloud services. Moreover, there are plans to expand its compatibility to encompass a wider array of cloud services in the foreseeable future.

Researchers have posited that as companies increasingly shift their operational workloads to Linux systems and cloud infrastructures, malicious actors have correspondingly widened their scope of targets. Notably, the user interface of VoidLink has been adapted for Chinese-speaking operators, hinting at a potential origin within a Chinese software development context. Delving into the source code, it becomes evident that the program is still in the developmental phase. As of now, no concrete instances of infection have been reported, indicating that its full-fledged deployment may still be on the horizon.