Language Selection

English French German Italian Portuguese Spanish

Linux users targeted by mystery drive-by rootkit

Filed under
Linux
Security

Security researchers have discovered what appears to be an experimental Linux rootkit designed to infect its highly select victims during a classic drive-by website attack.

Posted anonymously to Full Disclosure on 13 November by an annoyed website owner, the rootkit has since been confirmed by CrowdStrike and Kaspersky Lab as being distributed to would-be victims via an unusual form of iFrame injection attack.

Aimed specifically at users of the latest 64-bit Debian Squeezy kernel (2.6.32-5), the rootkit has been dubbed ‘Rootkit.Linux.Snakso.a’ by Kaspersky Lab.

rest here




More in Tux Machines

Type Title Author Replies Last Postsort icon
Story today's leftovers Rianne Schestowitz 26/06/2016 - 6:55pm
Story today's howtos Rianne Schestowitz 26/06/2016 - 6:51pm
Story More Android Leftovers Rianne Schestowitz 26/06/2016 - 6:47pm
Story OSS Leftovers Rianne Schestowitz 26/06/2016 - 6:45pm
Story Leftovers: Security Rianne Schestowitz 26/06/2016 - 6:41pm
Story Phoronix on Graphics Rianne Schestowitz 26/06/2016 - 5:41pm
Story Android Leftovers Rianne Schestowitz 26/06/2016 - 5:37pm
Story Tizen News Rianne Schestowitz 26/06/2016 - 4:53pm
Story D language, JavaScript Rianne Schestowitz 26/06/2016 - 4:50pm
Story today's leftovers Rianne Schestowitz 26/06/2016 - 6:46am