SoylentNews
SoylentNews is people
https://soylentnews.org/

Title    Linux Malware? That'll Never Happen. Okay, Just This Once Then
Date    Friday August 12 2016, @04:12AM
Author    cmn32480
Topic   
from the dept.
https://soylentnews.org/article.pl?sid=16/08/11/2042211

Arthur T Knackerbracket has found the following story:

Russian security outfit Dr. Web says it's found new malware for Linux.

The firms[sic] says the “Linux.Lady.1” trojan does the following three things:

The good news is that while the Trojan targets Linux systems, it doesn't rely on a Linux flaw to run. The problem is instead between the ears of those who run Redis without requiring a password for connections. If that's you, know that the trojan will use Redis to make a connection and start downloading the parts of itself that do real damage.

Once it worms its way in the trojan phones home to its command and control server and sends information including the flavour of Linux installed, number of CPUs on the infected machine and the number of running processes. The Register imagines that information means whoever runs the malware can make a decent guess at whether it is worth getting down to some mining, as there's little point working with an ancient CPU that's already maxed out.


Original Submission

Links

  1. "following story" - http://www.theregister.co.uk/2016/08/11/linux_malware_never_ok_just_this_once_then_if_we_must/
  2. "says" - http://vms.drweb.com/virus/?_is=1i=8400823
  3. "Original Submission" - https://soylentnews.org/submit.pl?op=viewsub&subid=15262

© Copyright 2022 - SoylentNews, All Rights Reserved

printed from SoylentNews, Linux Malware? That'll Never Happen. Okay, Just This Once Then on 2022-09-28 08:58:06