181
Thousands of Linux systems infected by stealthy malware since 2021
(arstechnica.com)
This is a most excellent place for technology news and articles.
Separate remote code execution vulnerability in unupdated versions of RocketMQ, a Chinese-developed messaging/streaming server, in the case of the infection described in the article. It's possible that there are a few other RCE vulns it can make use of, but 20000 of them seems unlikely.