Language Selection

English French German Italian Portuguese Spanish

Linux users targeted by mystery drive-by rootkit

Filed under
Linux
Security

Security researchers have discovered what appears to be an experimental Linux rootkit designed to infect its highly select victims during a classic drive-by website attack.

Posted anonymously to Full Disclosure on 13 November by an annoyed website owner, the rootkit has since been confirmed by CrowdStrike and Kaspersky Lab as being distributed to would-be victims via an unusual form of iFrame injection attack.

Aimed specifically at users of the latest 64-bit Debian Squeezy kernel (2.6.32-5), the rootkit has been dubbed ‘Rootkit.Linux.Snakso.a’ by Kaspersky Lab.

rest here




More in Tux Machines

Type Title Author Replies Last Postsort icon
Story Programming: ThreadStack and Qt for WebAssembly Roy Schestowitz 23/04/2018 - 5:39pm
Story today's howtos Roy Schestowitz 23/04/2018 - 5:24pm
Story Kernel and Graphics: BUS1, Linux 4.17 RC2, Wayland's Weston and Mesa Roy Schestowitz 23/04/2018 - 5:15pm
Story Thunderbolt 3 in Fedora 28 Roy Schestowitz 23/04/2018 - 5:13pm
Story New Terminal App in Chome OS Hints at Upcoming Support for Linux Applications Rianne Schestowitz 1 23/04/2018 - 4:53pm
Story New Heptio Announcements Roy Schestowitz 23/04/2018 - 4:46pm
Story Android Leftovers Rianne Schestowitz 23/04/2018 - 4:21pm
Story Raspberry Pi DAC HAT has dual Burr Brown DACs and a 128dB SNR Rianne Schestowitz 23/04/2018 - 4:08pm
Story Hands-On with Ubuntu's Brand New Welcome Screen in Ubuntu 18.04 LTS Roy Schestowitz 23/04/2018 - 3:32pm
Story Games Leftovers Roy Schestowitz 23/04/2018 - 3:20pm