Tag: linux

Linux Mint site hacked, users unwittingly download backdoored operating system

February 22, 2016

I hope you weren’t one of the hundreds of people who downloaded a compromised version of the Linux Mint operating system on Saturday. Because if you were, it’s possible that you’re not just running one of the more user-friendly flavours of Linux on your computer but also playing host to a Linux ELF trojan called … More Linux Mint site hacked, users unwittingly download backdoored operating system

Dissecting Linux/Moose

May 26, 2015

The Analysis of a Linux Router-based Worm Hungry for Social Networks Today we are releasing a research paper about a malware family that primarily targets Linux-based consumer routers but that can infect other Linux-based embedded systems in its path: Dissecting Linux/Moose. This blog post will summarize a few elements of the full report. Linux/Moose is … More Dissecting Linux/Moose

Unboxing Linux Malware: Spam from your servers

May 1, 2015

Today, ESET researchers reveal a family of Linux malware that stayed under the radar for more than 5 years. We have named this family Linux/Mumblehard. A white paper about this threat is available for download on WeLiveSecuriy. There are two components in the Mumblehard malware family: a backdoor and a spamming daemon. They are both … More Unboxing Linux Malware: Spam from your servers

Do you really need antivirus software for Linux desktops?

January 21, 2015

This is a shortened version of the article that appeared on ESET’s We Live Security. For the full article, go here. It started, innocently enough, as a question asked in the ESET Security Forum titled “Eset – Do I Really Need Antivirus On My Linux Distros?” However, the answer to that seemingly simple question on … More Do you really need antivirus software for Linux desktops?

Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole

April 29, 2013

Last week, our friends at Sucuri sent us a modified version of an Apache webserver redirecting some of its requests to the infamous Blackhole exploit packs. Sucuri has published a blog post on this attack. Our analysis of this malware, dubbed Linux/Cdorked.A, reveals that it is a sophisticated and stealthy backdoor meant to drive traffic … More Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole