Overclock.net › Forums › Industry News › Technology and Science News › [Techspot] Operation Windigo botnet has infected 25,000 servers in the last two years
New Posts  All Forums:Forum Nav:

[Techspot] Operation Windigo botnet has infected 25,000 servers in the last two years

post #1 of 6
Thread Starter 
Quote:
Security researchers from antivirus provider ESET on Tuesday announced a massive cyber attack that has managed to take control of at least 25,000 Linux/Unix servers over the last two years. The infected servers are used to steal credentials, send spam, and redirect web traffic to malicious web pages.

Source

Jeeze, linux has really been hit with malware, and to think this is in the server environment.
post #2 of 6
But this can't happen to Linux due to the way privileges work rolleyes.gif
The girlfriend.
(15 items)
 
The Mistress
(13 items)
 
Media Server
(11 items)
 
CPUMotherboardGraphicsRAM
A8-6410 Lenovo Lancer 4B2 K16.3 R5 128 Shaders/M230 Hynix 8GB DDR3 1600 
Hard DriveHard DriveOSMonitor
Samsung 840 120 GB SSD Seagate Momentus 1TB 5400rmp Win 8.1 CMN1487 TN LED 14" 1366*768 
KeyboardPowerMouseMouse Pad
Lenovo AccuType 2900mAh/41Wh Elan Trackpad/Logitech M90 Super Flower 
Audio
AMD Avalon(Connexant) 
  hide details  
Reply
The girlfriend.
(15 items)
 
The Mistress
(13 items)
 
Media Server
(11 items)
 
CPUMotherboardGraphicsRAM
A8-6410 Lenovo Lancer 4B2 K16.3 R5 128 Shaders/M230 Hynix 8GB DDR3 1600 
Hard DriveHard DriveOSMonitor
Samsung 840 120 GB SSD Seagate Momentus 1TB 5400rmp Win 8.1 CMN1487 TN LED 14" 1366*768 
KeyboardPowerMouseMouse Pad
Lenovo AccuType 2900mAh/41Wh Elan Trackpad/Logitech M90 Super Flower 
Audio
AMD Avalon(Connexant) 
  hide details  
Reply
post #3 of 6
afaik linux and mac have always been security through obscurity. also security breaking/breaching is matter of exploiting holes to elevate privileges, at least sometimes.
Alienware M17x-R4
(18 items)
 
Core 2 Haf
(16 items)
 
 
CPUGraphicsRAMHard Drive
i7-3920XM GTX980M G.SKILL Ripjaws 32GB Model F3-1866C10Q-32GRSL Samsung SSD 850 EVO mSATA 1TB 
Hard DriveHard DriveHard DriveOptical Drive
WD Blue 5400 RPM 1TB ODD Conversion w/ White Label 2TB Empty / Free Bay Converted External USB 
CoolingCoolingOSMonitor
M14x R2 10 CFM CPU fan Liquid Metal Pro Windows 10 /w Telemetry Block  1080p 120Hz eDP 
MonitorKeyboardPowerMouse
Sony FW900 @ 2304 x 1440 @ 80hz Saitek Eclipse I Dell 330 Watt Brick Logitech G500s 
OtherOther
Intel Dual Band Wireless-AC 7260 w/ BT iGPU disable / bypass 
CPUMotherboardGraphicsRAM
C2Q Q9550 ASUS P5E3 Deluxe Wifi-AP EVGA GTX 770 4GB Classified Kingston HyperX DDR3 KHX1600C9D3K2/8G 
RAMHard DriveCoolingOS
PNY 1333 55gb, 320Gb, 500GB, 1TB Corsair H80 Win 7 Ultimate 64bit 
OSMonitorPowerCase
Lubuntu 16.04 x64 Dual 1600x1200 Dell m993s @ 70hz TX750 Haf 912 
  hide details  
Reply
Alienware M17x-R4
(18 items)
 
Core 2 Haf
(16 items)
 
 
CPUGraphicsRAMHard Drive
i7-3920XM GTX980M G.SKILL Ripjaws 32GB Model F3-1866C10Q-32GRSL Samsung SSD 850 EVO mSATA 1TB 
Hard DriveHard DriveHard DriveOptical Drive
WD Blue 5400 RPM 1TB ODD Conversion w/ White Label 2TB Empty / Free Bay Converted External USB 
CoolingCoolingOSMonitor
M14x R2 10 CFM CPU fan Liquid Metal Pro Windows 10 /w Telemetry Block  1080p 120Hz eDP 
MonitorKeyboardPowerMouse
Sony FW900 @ 2304 x 1440 @ 80hz Saitek Eclipse I Dell 330 Watt Brick Logitech G500s 
OtherOther
Intel Dual Band Wireless-AC 7260 w/ BT iGPU disable / bypass 
CPUMotherboardGraphicsRAM
C2Q Q9550 ASUS P5E3 Deluxe Wifi-AP EVGA GTX 770 4GB Classified Kingston HyperX DDR3 KHX1600C9D3K2/8G 
RAMHard DriveCoolingOS
PNY 1333 55gb, 320Gb, 500GB, 1TB Corsair H80 Win 7 Ultimate 64bit 
OSMonitorPowerCase
Lubuntu 16.04 x64 Dual 1600x1200 Dell m993s @ 70hz TX750 Haf 912 
  hide details  
Reply
post #4 of 6
Quote:
Originally Posted by Liranan View Post

But this can't happen to Linux due to the way privileges work rolleyes.gif

Sigh...if you find a glitch or a bug in a program/code you might just find your way to root if you're clever enough or if the bug is that critical. I'd say almost all of the time you still need to get the actual user to execute/give permission for your code which means they'd still have to, through ignorance/social engineering, give you the keys to the house.
     
CPUGraphicsRAMHard Drive
Intel Core m3-6Y30 Intel HD515 8GB 1866DDR3L Micron M600 MTFDDAV256MBF M.2, 256 GB 
CoolingOSOSMonitor
Fanless Win10 Home x64 Kubuntu 16.04 (requires Linux kernel 4.5/4.6) 13.3 inch 16:9, 1920x1080 pixel, AU Optronics A... 
CPUMotherboardGraphicsRAM
AthlonIIX4 640 3.62GHz (250x14.5) 2.5GHz NB Asus M4A785TD-M EVO MSI GTX275 (Stock 666) 8GBs of GSkill 1600 
RAMHard DriveHard DriveHard Drive
4GBs of Adata 1333 Kingston HyperX 3k 120GB WD Caviar Black 500GB Hitachi Deskstar 1TB 
Optical DriveCoolingOSOS
LG 8X BDR (WHL08S20) Cooler Master Hyper 212+ Kubuntu x64 Windows 7 x64 
OSMonitorPowerCase
Bodhi Linux x64 Acer G215H (1920x1080) Seasonic 520 HAF912 
CPUMotherboardGraphicsRAM
N450 1.8GHz AC and 1.66GHz batt ASUS proprietary for 1001P GMA3150 (can play bluray now!?) 1GB DDR2 
Hard DriveOptical DriveOSOS
160GB LGLHDLBDRE32X Bodhi Linux Fedora LXDE 
OSOSMonitorKeyboard
Kubuntu SLAX 1280x600 + Dell 15inch Excellent! 
PowerCase
6 cells=6-12hrs and a charger 1001P MU17 Black 
  hide details  
Reply
     
CPUGraphicsRAMHard Drive
Intel Core m3-6Y30 Intel HD515 8GB 1866DDR3L Micron M600 MTFDDAV256MBF M.2, 256 GB 
CoolingOSOSMonitor
Fanless Win10 Home x64 Kubuntu 16.04 (requires Linux kernel 4.5/4.6) 13.3 inch 16:9, 1920x1080 pixel, AU Optronics A... 
CPUMotherboardGraphicsRAM
AthlonIIX4 640 3.62GHz (250x14.5) 2.5GHz NB Asus M4A785TD-M EVO MSI GTX275 (Stock 666) 8GBs of GSkill 1600 
RAMHard DriveHard DriveHard Drive
4GBs of Adata 1333 Kingston HyperX 3k 120GB WD Caviar Black 500GB Hitachi Deskstar 1TB 
Optical DriveCoolingOSOS
LG 8X BDR (WHL08S20) Cooler Master Hyper 212+ Kubuntu x64 Windows 7 x64 
OSMonitorPowerCase
Bodhi Linux x64 Acer G215H (1920x1080) Seasonic 520 HAF912 
CPUMotherboardGraphicsRAM
N450 1.8GHz AC and 1.66GHz batt ASUS proprietary for 1001P GMA3150 (can play bluray now!?) 1GB DDR2 
Hard DriveOptical DriveOSOS
160GB LGLHDLBDRE32X Bodhi Linux Fedora LXDE 
OSOSMonitorKeyboard
Kubuntu SLAX 1280x600 + Dell 15inch Excellent! 
PowerCase
6 cells=6-12hrs and a charger 1001P MU17 Black 
  hide details  
Reply
post #5 of 6
Quote:
Originally Posted by cdoublejj View Post

afaik linux and mac have always been security through obscurity. also security breaking/breaching is matter of exploiting holes to elevate privileges, at least sometimes.

not so much obscure these days, but still the security model of a *nix platform is just worlds ahead of security on a windoz platform.
worlds better, still not perfect smile.gif
zomgFX
(8 items)
 
CR-48
(14 items)
 
needs moar win
(14 items)
 
CPUMotherboardGraphicsRAM
N455 1.66GHZ Tripod Motherboard MARIO Intel GMA 3150 2 GB DDR3 
Hard DriveHard DriveOSMonitor
16GB SanDisk SSD 32GB Centon SDHC  Lubuntu 12.1" LCD 
CaseMouse
matte. Canon X Mark I 
CPUMotherboardGraphicsGraphics
E8400 C0 P5N-E SLI EVGA 8800GT EVGA 8800GT 
RAMHard DriveHard DriveCooling
4gigs ddr2800 - G.skill Seagate 2tb 5700RPM Crucial M4 64GB Hyper 212+ 
OSMonitorPowerCase
Windoz 7 ulti Asus V222H 21.5 1920x1080 Corsair HX520 Smilodon 
Mouse
Roccat Kone (poop) 
  hide details  
Reply
zomgFX
(8 items)
 
CR-48
(14 items)
 
needs moar win
(14 items)
 
CPUMotherboardGraphicsRAM
N455 1.66GHZ Tripod Motherboard MARIO Intel GMA 3150 2 GB DDR3 
Hard DriveHard DriveOSMonitor
16GB SanDisk SSD 32GB Centon SDHC  Lubuntu 12.1" LCD 
CaseMouse
matte. Canon X Mark I 
CPUMotherboardGraphicsGraphics
E8400 C0 P5N-E SLI EVGA 8800GT EVGA 8800GT 
RAMHard DriveHard DriveCooling
4gigs ddr2800 - G.skill Seagate 2tb 5700RPM Crucial M4 64GB Hyper 212+ 
OSMonitorPowerCase
Windoz 7 ulti Asus V222H 21.5 1920x1080 Corsair HX520 Smilodon 
Mouse
Roccat Kone (poop) 
  hide details  
Reply
post #6 of 6
Quote:
Originally Posted by Maelthras View Post

Source

Jeeze, linux has really been hit with malware, and to think this is in the server environment.

so long linux security. this is the second attack of this kind through already
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Technology and Science News
Overclock.net › Forums › Industry News › Technology and Science News › [Techspot] Operation Windigo botnet has infected 25,000 servers in the last two years