Language Selection

English French German Italian Portuguese Spanish

“Hand of Thief” banking trojan doesn’t do Windows—but it does Linux

Filed under
Linux
Security

Signaling criminals' growing interest in attacking non-Windows computers, researchers have discovered banking fraud malware that targets people using the open-source Linux operating system.

Hand of Thief, which was recently discovered by researchers from security firm RSA, sells for about $2,000 in underground Internet forums and boasts its own support and sales agents. Its functionality—consisting of form grabbers and backdoor capabilities—is rudimentary compared to Windows banking trojans spawned from the Citadel or Blackhole exploit kits, but that's likely to change. RSA researcher Limor Kessem said she expects Hand of Thief to become a full-blown banking trojan that includes more advanced features such as the ability to inject attacker-controlled content into trusted bank webpages.

"Although Hand of Thief comes to the underground at a time when commercial trojans are high in demand, writing malware for the Linux OS is uncommon, and for good reason," Kessem wrote. "In comparison to Windows, Linux's user base is smaller, considerably reducing the number of potential victims and thereby the potential fraud gains."

rest here




More in Tux Machines

Still running 32 bit Ubuntu?

I’m considering a proposal to have 16.04 LTS be the last release of Ubuntu with 32 bit images to run on 32 bit only machines (on x86 aka Intel/AMD only – this has no bearing on ARM). You would still be able to run 32 bit applications on 64 bit Ubuntu. Read more

NVIDIA GeForce GTX 970 Offers Great Linux Performance

Since last month's Linux review of the GeForce GTX 980 as NVIDIA's newest high-end GPU powered by their Maxwell architecture, many Phoronix readers have been requesting Ubuntu Linux tests of the GTX 970 too. I've now got my hands on an EVGA GeForce GTX 970 and am putting it through its paces today. Read more

GTK+ Gains Experimental Overlay Scrollbars

The overlay scrollbar work that was committed on Monday is about improving the scrolling experience for those using GTK+ applications from touch screens. This prototype widget allows for showing a scroll position indicator on touch screens while hiding the scrollbar -- it sounds similar to Ubuntu's GTK2/GTK3 overlay scrollbar support for Unity. Read more

3 Alternatives to the Adobe PDF Reader on Linux

Adobe has pulled the plug on supporting its PDF reader app for Linux. This should come as no surprise, as the last time Adobe Reader for Linux was updated came in May 2013. But until recently, you could at least download and install Reader on your Linux desktop machine. Now? You can’t. If you go to the Adobe Reader site, you’ll find the Linux installer is no longer available. Read more