this post was submitted on 06 Oct 2024
8 points (100.0% liked)

Sysadmins for sysadmins

238 readers
1 users here now

Kažkas turi tai padaryti / Somebody has to do it

Related communities:

Fotkė / Photo camilo jimenez Unsplash

founded 2 years ago
MODERATORS
saint@group.lt
alhemic@group.lt
8
Stealthy Malware Has Infected Thousands of Linux Systems for Years (web.archive.org)
submitted 1 month ago by RGB@group.lt to c/bofh@group.lt
3 comments fedilink hide all child comments
 

Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of misconfigurations it can exploit, and the breadth of malicious activities it can perform, researchers reported Thursday.

The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the internet potential targets, researchers from Aqua Security said. It can also exploit CVE-2023-33426, a vulnerability with a severity rating of 10 out of 10 that was patched last year in Apache RocketMQ, a messaging and streaming platform that’s found on many Linux machines.

top 3 comments
sorted by: hot top controversial new old
[–] Asidonhopo@lemmy.world 2 points 1 month ago* (last edited 1 month ago)

I was reading about this a couple days ago. With the wider adoption of Linux these days, is there an easy solution to scan for a way to eliminate this for the less experienced end user?

[–] HeyThisIsntTheYMCA@lemmy.world 1 points 1 month ago

Excuse me Linux is impervious to malware a lemming told me

[–] feddylemmy@lemmy.world 1 points 1 month ago

IOCs are talked about here:

https://web.archive.org/web/20241006122015/https://www.aquasec.com/blog/perfctl-a-stealthy-malware-targeting-millions-of-linux-servers/