Language Selection

English French German Italian Portuguese Spanish

Security: TrendMicro, Mozilla's Firefox Monitor and Capsule8

Filed under
Security
  • New Linux malware mines crypto after installing backdoor with secret master password [Ed: Skips the part about it having to be installed in the first place (not the fault of Linux)]

    Cybersecurity researchers have identified a new strain of Linux malware that not only mines cryptocurrency illicitly, but provides the attackers with universal access to an infected system via a “secret master password.”

    TrendMicro’s latest blog also reveals that Skidmap attempts to mask its cryptocurrency mining by faking network traffic and CPU-related statistics.

  • Linux malware masks illicit crypto mining with fake network traffic

    A new cryptocurrency mining malware targeting Linux systems has demonstrated how complex this type of malware has become. Known as Skidmap, the malware is not only harder to detect, it also gives the attackers unfiltered access to the affected system.

  • What to do after a data breach

    You saw the news alert. You got an email, either from Firefox Monitor or a company where you have an account. There’s been a security incident — a data breach. And your account has been compromised.

    Getting notified that you’ve been a victim of a data breach can be alarming. You have valid cause for concern, but there are a few steps you can take immediately to protect your account and limit the damage.

  • Capsule8 Protect Earns HIPAA Compliance Certification

More of the same

  • The Black Hat Hackers who Turned Over a New Leaf

    Ever since IBM’s John Patrick coined the term ‘Ethical Hacking’ in 1995, the profession has grown to become a much-needed aspect in security programs. The growing popularity of certification courses on ethical hacking and bug bounty programs illustrates the importance of ethical hackers for today’s businesses.

    But still, the term ‘Ethical Hacker’ conflicts with the image of hackers, which is portrayed as cybercriminals. Apart from data security personnel and government regulators, most people might not be familiar with ethical hacking. A look at the history of some notable ethical hackers possibly mitigates the negative connotations around it. Below are some of the famous ethical hackers around the world:

  • New Linux malware is evading detection to mine cryptocurrency

    Dubbed Skidmap by researchers; the Linux malware mines cryptocurrency and drops backdoor – All that without being detected.

    The perception cryptocurrencies have created today ranges from them being a “flat out scam” to an innovative piece of technology in the new age. While our understanding of the latter is clear, the former needs some light to be shed on, how did we get here?

    To answer this, we may look no further than the latest in the cryptocurrency world where another Linux malware named as Skidmap has been discovered by Trend Micro that illegally mines cryptocurrencies, a malicious technique known as cryptojacking.

  • New Linux mining malware uncovered

    Augusto Remillano II and Jakub Urbanec recently announced in a Trend Micro post that they have come across new Linux malware. The analysts reported in the security intelligence blog that the malware loads malicious kernel modules to hide its cryptocurrency mining operations.

    According to the analysts, a rootkit is being used by Skidmap to hide its cryptocurrency mining activities. It is a program that installs and executes code on a system without end-user consent or knowledge. This makes its malware components undetectable by the infected system’s monitoring tools. Apart from conducting a cryptojacking campaign, the malware reportedly provides attackers with “unfettered access” to the affected system.

Sneaky cryptocurrency-mining malware Skidmap hits Linux

  • Sneaky cryptocurrency-mining malware Skidmap hits Linux

    Security researchers at TrendMicro have discovered a rootkit-like strain of malware that is striking Linux users. Called Skidmap, the malware is a cryptocurrency miner, but there is much more to it than that.

    Skidmap is clever. Very clever. It goes out of its way to disguise itself, going as far as faking system statistics to hide the tell-tale high CPU usage that might give it away. More than this, the Monero-mining malware can also give attackers unlimited access to an infected system.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Dragora 3.0-beta1 released

I am pleased to announce the release of Dragora 3.0 Beta 1.

Dragora is a complete and reliable distribution of the GNU/Linux operating system that is entirely free software. Dragora is founded on the concepts of simplicity and elegance, it can be run for almost any purpose (desktop,
workstation, server, development, etc.). The intended audience is people
interested in learning more about the technical aspects of a friendly
GNU/Linux distribution.  Also people looking to use the purest ethical
software for daily use.

The beginning of the development of the series 3.0 represents the
migration towards a new C library, Musl.  The continuation of
supervision capabilities (introduced for the services in 2012).
The restructuring of the hierarchy of directories, the improvement of
the tools provided by the distribution, a new automatic method to build
the distribution, the prebuilt cross-compiler set, and much more!

The homepage is at www.dragora.org

Current development pages are located at
https://git.savannah.nongnu.org/cgit/dragora.git/ and
https://notabug.org/dragora/

Changes in this version:

  * A new installer for this series has been introduced, it can be
    invoked from the command line as `dragora-installer'.

  * A new tool (based on dialog(1)) has been introduced to
    configure the keyboard mapping in the console, it is called
    `dragora-keymap'.

  * Our simple and friendly package manager has reached version 1.3,
    which contains minor changes and fixes.  It is worth mentioning
    that Qi now uses `tarlz' to produce, list packages in parallel.
    Tarlz uses a simplified and safer variant of the POSIX pax format
    compressed with our favorite compressor "lzip".

  * To complement the security in general, for binaries with PIE and
SSP (both are default features in Dragora), they are now complemented
    with RELRO by default.

  * The main toolchain has been upgraded.  This -beta1 have Binutils
    2.33.1, The GNU C Compiler 9, GNU Linux libre 4.19.78, and
    Musl 1.1.24.

  * LibreSSL has been upgraded to the version 3.0.1

  * Ruby (programming language) version 2.6.5 has been introduced.

  * Support for FUSE (in the kernel) and user space, is now available
    in Dragora.

  * Xfce 4.14 has been introduced in this version.

  * dragora-ice, a customized version of IceWM has been added.

  * All the official X.Org components has been updated (drivers, server,
    applications, etc.).  Included new drivers: xf86-input-elographics,
    xf86-video-amdgpu, xf86-video-vboxvideo.  The configuration for the
    xf86-video-intel driver has been fixed this time.

  * Work to complete DocBook support in Dragora is underway.

  * Build recipes for new packages have been built:

    Please, traverse the /usr/pkg hierarchy for a full view of
    installed packages.

  * Many general fixes, improvements, and clean ups have been performed.

The ISO images may be fetched at:

    https://sourceforge.net/projects/dragora/files/beta/

See http://dragora.org/en/mirrors.html for a list of available mirrors.

The sha256sums are:

59a1c1693d62c2d61a0d5b4b826313ce8b736768b1a42097f1478a20a37f7a80 dragora-3.0-i586-beta1-live.iso 3127ea5b619b8e049b45a17e1e4d9c538b35ac067a7cd63d2262a30782e7cc2d dragora-3.0-i586-beta1-packages.iso 1c0f63a69cd4b674b742550562605f240e98cdbc63ab670c9f8cdd5d2d134efc dragora-3.0-x86_64-beta1-live.iso 2dd58b1e6429876aa1883b4682914184bce6cac2adfe53ea7c2e0c46d7987385 dragora-3.0-x86_64-beta1-packages.iso

Dragora is available in "live" or hybrid ISO image form. You need the .iso
for the packages if you want to perform a hard disk installation.

Notes:

* The password for the root user in the Live CD is: dragora

This beta version can be considered as stable, it is catalogued just as
beta because it lacks many things that we will try to complement in future
versions.

We welcome feedback at our Freenode IRC channel, #dragora, and on our
mailing list.  We are looking for help with documentation, testing,
bug reports, patches, etc.

Thank you to all of you who support this humble project made with great
sacrifice.  And thank you especially for supporting the philosophy and
spirit of software freedom that Dragora aims to promote.

Best regards,
Matias Fonzo, Dragora author and maintainer.

--
``Someone told me I would never be free
The way you are is way you'll always be
But it's all wrong!
There's Time To Burn'' - Ronnie James Dio

Read more

PCLinuxOS 2019.10 updated installation media release

The PCLinuxOS project has announced the release of updated installation media for PCLinuxOS. The new media carries the version number 2019.10 and contains a fully updated system as of October 15 2019. Please note it is not required to do a clean installation each month since PCLinuxOS is a rolling release. These ISOs are being provided so new users don’t have a large update to perform after installation from a dated ISO. Read more

Firefox Reality Top Picks - Bringing You New Virtual Reality Experiences Weekly

So you bought yourself a fancy VR headset, you’ve played all the zombie-dragon-laser-kitten-battle games (we have too!) and now you’re wondering… what else is there? Where can I find other cool stuff to explore while I have this headset strapped to my face? We felt the same way, so we built Firefox Reality to help you in your quest for the most interesting, groundbreaking and entertaining virtual reality content on the Web. The real promise of VR is the ability to immerse yourself into countless other places and perspectives - both real and imaginary - and to experience things you’ve never done before. Our Top Picks page is a great place to start exploring, with fresh recommendations coming weekly so you always have new content to check out. Of course, if you want to explore on your own, you can use Firefox Reality for that too. Firefox Reality Top Picks is the start of what we hope will evolve into a thriving and sustainable ecosystem connecting creators, VR content, and audience. Read more Also: Faster Layouts with CSS Grid (and Subgrid!)

today's howtos