Not a cybersecurity expert, so this terrifies me. Has anyone dug into it yet? How worried should I be?
This post details some possible ways to detect this:
I would put Suricata on the firewall and block all TOR connections since it seems to primarily operate over TOR. I’d also make plans to burn anything down that looks like it might maybe be infected.
I’m guessing Zabbix or another monitoring tool can show the CPU usage, it was mentioned that one case was found by the CPU going to 100% when logged out.
And make sure you are patched.
Not more worried than before, not more relaxed than before. It is nothing new under the sun, just a different rootkit. In itself is not the problem, it is the symptom.
Keep your systems up to date software wise, have a firewall blocking all ports you don’t use, ideally have decent monitoring in place for any odd spikes in cpu/ram/disk usage, and of course run regular backups.