CVEDNA

Version AMP - Chargement ultra-rapide

New Advanced Linux VoidLink Malware Targets Cloud and Container Environments

📅 13 January 2026

Introduction

The cybersecurity research community has unveiled details of a previously unseen and highly sophisticated malware framework codenamed VoidLink. This malware is specifically engineered for long-term, stealthy access to Linux-based cloud environments.

The Malware Framework

According to a new report from Check Point Research, the VoidLink malware framework consists of a variety of custom loaders, implants, rootkits, and modular components designed to provide persistent and undetected access to target systems. These elements work together to evade detection by traditional security tools and enable the attackers to maintain control over the compromised infrastructure.

Implications for Cloud Security

The availability of such a specialized malware framework poses a significant threat to cloud service providers and their customers. It highlights the increasing sophistication of cyber threats targeting cloud environments, which require more robust and proactive security measures.

CVEs Affected

The exact CVE IDs associated with VoidLink are not disclosed in the original report, but such advanced malware often targets known vulnerabilities that may not yet have patches available. The absence of CVE IDs suggests that the developers have been careful to avoid triggering detection mechanisms based on known exploits.

Threat Type and Criticality

The threat type for VoidLink is classified as malware. Given its capabilities for stealth and persistence, it could be considered a high-risk threat with a criticality score of 7 out of 10. This rating reflects the potential damage it can cause to both the infrastructure it targets and the data stored within it.

Recommendations

Organizations using Linux-based cloud environments should immediately update their security policies to include comprehensive threat detection and response capabilities, particularly for cloud-native applications. Regularly monitoring system logs and implementing advanced endpoint protection solutions can help mitigate risks associated with such sophisticated malware.