Language Selection

English French German Italian Portuguese Spanish

Linux users targeted by mystery drive-by rootkit

Filed under
Linux
Security

Security researchers have discovered what appears to be an experimental Linux rootkit designed to infect its highly select victims during a classic drive-by website attack.

Posted anonymously to Full Disclosure on 13 November by an annoyed website owner, the rootkit has since been confirmed by CrowdStrike and Kaspersky Lab as being distributed to would-be victims via an unusual form of iFrame injection attack.

Aimed specifically at users of the latest 64-bit Debian Squeezy kernel (2.6.32-5), the rootkit has been dubbed ‘Rootkit.Linux.Snakso.a’ by Kaspersky Lab.

rest here




More in Tux Machines

Type Title Author Replies Last Postsort icon
Story A look at Ubuntu 17.10 Artful Aardvark Roy Schestowitz 22/10/2017 - 9:01pm
Story Android Leftovers Rianne Schestowitz 22/10/2017 - 7:45pm
Story Today in Techrights Roy Schestowitz 22/10/2017 - 4:46pm
Story OSS Leftovers Roy Schestowitz 22/10/2017 - 1:53pm
Story Security Leftovers Roy Schestowitz 22/10/2017 - 1:48pm
Story Debian: pk4, Freexian and More Roy Schestowitz 22/10/2017 - 1:47pm
Story Kernel and Graphics: ZenStates, AMDGPU, RADV, Vulkan, NVIDIA Roy Schestowitz 22/10/2017 - 1:43pm
Story Ubuntu: Mir running on Fedora and Ubuntu 17.10 Guidance Roy Schestowitz 22/10/2017 - 1:41pm
Story Purism Librem 5 Linux Smartphone Campaign Set To End At Around $2 Million Roy Schestowitz 22/10/2017 - 1:38pm
Story Games: The Coma: Recut, Mushroom Wars 2 and Team Fortress 2 Roy Schestowitz 22/10/2017 - 10:01am