Cybersecurity experts have uncovered a new assault sequence that utilizes phishing messages to transmit an open-source backdoor known as VShell. The “Linux-targeted malware infection sequence begins with a spam message containing a harmful RAR archive file,” noted Trellix researcher Sagar Bade in a technical article. “The payload is not concealed within the file’s content or a macro; it is encoded directly.”