Linux Lite Forums

General => Security & Bug Fixes => Topic started by: tomt on February 15, 2016, 09:51:26 AM

Title: Maleware
Post by: tomt on February 15, 2016, 09:51:26 AM
Yet another Linux Trojan to watch for.  "http://www.pcworld.com/article/3033229/security/russian-cyberspy-group-uses-simple-yet-effective-linux-trojan.html" />
 A natural extension of this exposure is increased targeting by both dedicated and opportunistic attackers across various malicious actor motivations. Despite the lingering belief (and false sense of security) that Linux inherently yields higher degrees of protection from malicious actors, Linux malware and vulnerabilities do exist and are in use by advanced adversaries. To mitigate associated risks requires tailored integration of the people, processes, and technology in support of prevention, monitoring, and detection within an environment.
Linux malware detection and prevention is not prevalent at this time, but Palo Alto Networks customers are protected through our next-generation security platform:
Title: Re: Maleware
Post by: Wirezfree on February 15, 2016, 10:51:15 AM
More details here:
http://researchcenter.paloaltonetworks.com/2016/02/a-look-into-fysbis-sofacys-linux-backdoor/ (http://researchcenter.paloaltonetworks.com/2016/02/a-look-into-fysbis-sofacys-linux-backdoor/)
Title: Re: Maleware
Post by: newtusmaximus on February 15, 2016, 10:56:28 AM
So? What can be used a) to block, b) To detect infection c) remove disinfect any infection?
Title: Re: Maleware
Post by: misko_2083 on February 15, 2016, 12:14:16 PM
Threats don't last long on Linux, vulnerabilities are patched quickly. Polititians are bigger threat to privacy than trojans IMO.  :)
Especially those that want back doors in encription and to collect all the web communication and history of Internet users.
http://www.theguardian.com/world/2016/jan/13/snoopers-charter-theresa-may-cafes-wifi-network-store-customers-data (http://www.theguardian.com/world/2016/jan/13/snoopers-charter-theresa-may-cafes-wifi-network-store-customers-data)
Snoopers' Charter is scary stuff.
(https://pbs.twimg.com/media/Ca7gLe-XIAAR-0c.jpg)
Title: Re: Maleware
Post by: nomko on February 15, 2016, 02:42:47 PM
Beside that, i wonder how they managed to bypass the system administration system. If that applies here too.