Language Selection

English French German Italian Portuguese Spanish

Linux/Lupper.worm rears its ugly head

Filed under
Security

This worm spreads by exploiting web servers hosting vulnerable PHP/CGI scripts. It is a modified derivative of the Linux/Slapper and BSD/Scalper worms from which it inherits the propagation strategy. It scans an entire class B subnet created by randomly choosing the first byte from an hard-coded list of A classes and randomly generating the second byte.

The worm blindly attacks web servers by sending malicious http requests on port 80. If the target server is running one of the vulnerable scripts at specific URLs and is configured to permit external shell commands and remote file download in the PHP/CGI environment, a copy of the worm could be downloaded and executed.

Like its precedents, the infected computers form a global network of compromised servers based on peer to peer communication principles. This network can be used, for example, for Distributed Denial of Service (DDoS) attacks or other purposes because it can accept remote commands. It is also capable of harvesting email addresses stored in files on the web server.

More Details.

More in Tux Machines

New Tizen Tools Version Released (15.01)

A new version of the Tizen development tools has been released, version 15.01, and it is available on download.tizen.org, including the following: GBS 0.23.2 MIC 0.24.4 REPA 0.3 BMAP-TOOLS 3.3 Read more

Arch Linux 2015.03.01 Is Now Available for Download

A brand-new ISO image of the lightweight, highly customizable and powerful Arch Linux computer operating system has been released today, March 1, 2015, for those who want to deploy the acclaimed distribution on new computers. Read more

Cuberox, App-Driven Linux-Based Cube, Has Six Touch Screens

Vancouver-based startup Cuberox launched a new Kickstarter campaign on Tuesday to raise funds for a Linux-based cube of the same name. This gadget sports a touch-enabled screen on each side and is capable of running six apps simultaneously. The campaign is shooting to acquire $150,000 in funding before the March 29, 2015 deadline. Read more

Rancher Labs builds Linux system for Docker

As Docker continues to gain popularity, more and more minimalist operating systems are emerging to run the platform in production and at scale. Rancher Labs recently announced a new open-source operating system designed explicitly for Docker. While Docker is able run on almost any Linux distribution, RancherOS was conceptualized out of the company’s own needs, according to Sheng Liang, founder and CEO of Rancher Labs. Read more