Whoops: 10,000 Linux servers hit by malware serving tsunami

Any software related topics go in here.
Post Reply
GDI_Lord
Forum Administrator
Posts: 2663
Joined: 05 Sep 2005, 02:00

Whoops: 10,000 Linux servers hit by malware serving tsunami

Post by GDI_Lord »

10,000 Linux servers hit by malware serving tsunami of spam and exploits
Two-year-old Windigo may also have infected kernel.org Linux developers.

http://arstechnica.com/security/2014/03 ... -exploits/
Important Thread: Yours in Christ's service,
User avatar
rustypup
Registered User
Posts: 8872
Joined: 13 Dec 2004, 02:00
Location: nullus pixius demonica
Contact:

Re: Whoops: 10,000 Linux servers hit by malware serving tsun

Post by rustypup »

FTA wrote:The Windigo campaign doesn't rely on technical vulnerabilities to take hold of servers, Eset said. Instead, it uses stolen credentials. That finding led the researchers to conclude password authentication to access servers is inadequate.
any system is vulnerable if your "admin" is playing fast and loose with creds...

the real story here is the sheer volume of newblets rolling *nix servers without even beginning to contemplate security... very much like apple users, they think the OS makes them secure...
Most people would sooner die than think; in fact, they do so - Bertrand Russel
GDI_Lord
Forum Administrator
Posts: 2663
Joined: 05 Sep 2005, 02:00

Re: Whoops: 10,000 Linux servers hit by malware serving tsun

Post by GDI_Lord »

rustypup wrote:any system is vulnerable if your "admin" is playing fast and loose with creds...
+1 dude!!!
Important Thread: Yours in Christ's service,
User avatar
hamin_aus
Forum Moderator
Posts: 18363
Joined: 28 Aug 2003, 02:00
Processor: Intel i7 3770K
Motherboard: GA-Z77X-UP4 TH
Graphics card: Galax GTX1080
Memory: 32GB G.Skill Ripjaws
Location: Where beer does flow and men chunder
Contact:

Re: Whoops: 10,000 Linux servers hit by malware serving tsun

Post by hamin_aus »

Nobody will ever guess my birthday is my password
Image
GDI_Lord
Forum Administrator
Posts: 2663
Joined: 05 Sep 2005, 02:00

Re: Whoops: 10,000 Linux servers hit by malware serving tsun

Post by GDI_Lord »

hamin_aus wrote:Nobody will ever guess my birthday is my password
By these links combined,
http://it.slashdot.org/story/14/03/27/1 ... name123456 +
http://it.slashdot.org/comments.pl?sid= ... d=46595523 +
http://it.slashdot.org/comments.pl?sid= ... d=46595649

I am Spaceballs: The Captain Planet!!!
Important Thread: Yours in Christ's service,
Post Reply