A new covert Linux kernel rootkit namedSyslogkhas been spotted under development in the wild and cloaking a malicious payload that can be remotely commandeered by an adversary using amagic network traffic packet. “The Syslogk rootkit is heavily based on Adore-Ng but incorporates new functionalities making the user-mode application and the kernel rootkit hard to detect,” Avast security