news
Blaming "Linux" for Microsoft and Hyper-V Breaches
-
Dolphin Publications B V ☛ Pro-Russian hackers hide in Windows with Linux VMs [Ed: Blaming Linux for Microsoft's Hyper-V (Proprietary)]
A recent investigation by Bitdefender reveals how the pro-Russian hacker group Curly COMrades uses innovative methods to remain undetected for long periods of time within Windows environments. The group, which according to the researchers operates in line with Russian geopolitical interests, uses hidden Linux virtual machines to bypass detection by traditional security measures.
-
TechRadar ☛ Russian hackers hit Windows machines via Linux VMs with new custom malware
Security researchers from Bitdefender after analyzing the latest activities together with the Georgian Computer Emergency Response Team (CERT), found Curly COMrades first started targeting their victims in July 2025, when they ran remote commands to enable the microsoft-hyper-v virtualization feature and disable its management interface.
-
Cybernews ☛ Russian hackers sneak a full Linux virtual machine inside Windows to run undetected
You can’t detect malware on Windows if it’s not running on Windows. Russian hackers are exploiting Microsoft’s Hyper-V virtualization feature to create a hidden Linux virtual machine within a target’s host, allowing them to covertly install secret implants on the victim's computer.
-
Dark Reading ☛ Pro-Russian Hackers Use Linux VMs to Hide in Windows
Threat actors supporting Russia's geopolitical interests are using Linux-based virtual machines (VMs) to obfuscate their activities from Windows endpoint security tools.