BPFDoor isn’t a new cyberattack “in fact, it’s been there for years” but it was only identified in 2021 by PwC researchers. As a result, the cybersecurity community is learning more about malware’s stealthy nature, how it works, and how to avoid it.
Berkley Packet Filters (BPF) is an acronym for Berkley Packet Filters, which is fitting given that the virus targets packet filters. BPFDoor scans all network traffic for vulnerabilities using BPF “sniffers.” Packet filters are programmes that look at “packets” (files, metadata, and network traffic) and decide whether or not they should be allowed to pass depending on the source and destination IP addresses, protocols, or ports. Read More…