Language Selection

English French German Italian Portuguese Spanish

Annual Kaspersky Labs Fearmongering!

Merry Fearmongering!

Kaspersky Labs (maker of the infamous KAV for Windows), has started what I call their "annual fearmongering initiative".

It appears about this time of year, when they release their so-called "Look everyone! We found a proof of concept malware that does something nasty to *insert opensource solution name here*" press releases.

Obviously, this is designed to spread fear.
(If you know what you're doing in Linux, there's nothing to fear.)

Here's a friendly reminder...

This is from 2006.

The case of the non-viral virus
http://software.newsforge.com/article.pl?sid=06/04/10/2218210

Torvalds creates patch for cross-platform virus
http://software.newsforge.com/article.pl?sid=06/04/18/1941251

OpenOffice.org virus debunked by experts
http://software.newsforge.com/article.pl?sid=06/06/02/2136202

And for this year? (2007)

iPod virus scare stories are here
http://www.theinquirer.net/default.aspx?article=38767
(It involves Linux installed on iPod).

Notice how in BOTH cases:

(1) The malware in question are "proof of concept" ones!
Translation? They do NOTHING in real life! They don't spread by themselves. They do NOT do any widespread damage!

(2) They don't do anything until you run them with root privilages and the like. As in you intentionally or delibrately infect yourself! No one is THAT stupid!

(3) Kaspersky Labs were the only ones that happen to find this type of malware! It leads me to believe it is THEM who are delibrately writing this proof of concept nonsense to begin with!

(4) It involves opensource solutions.

While these tactics may work on the Windows crowd, don't expect the Linux crowd to fall for the same BS. Its not gonna work.

Let me end this post by suggesting you read this article.
(If you've read it before, I want you to remind yourself again this year.)

Can the malware industry be trusted?
http://software.newsforge.com/article.pl?sid=06/06/06/1832223

My response to Kaspersky...
Do you really think we're that stupid?

More in Tux Machines

today's howtos

A tour of Google's 2016 open source releases

Open source software enables Google to build things quickly and efficiently without reinventing the wheel, allowing us to focus on solving new problems. We stand on the shoulders of giants, and we know it. This is why we support open source and make it easy for Googlers to release the projects they're working on internally as open source. We've released more than 20-million lines of open source code to date, including projects such as Android, Angular, Chromium, Kubernetes, and TensorFlow. Our releases also include many projects you may not be familiar with, such as Cartographer, Omnitone, and Yeoman. Read more

Viewing Linux Logs from the Command Line

At some point in your career as a Linux administrator, you are going to have to view log files. After all, they are there for one very important reason...to help you troubleshoot an issue. In fact, every seasoned administrator will immediately tell you that the first thing to be done, when a problem arises, is to view the logs. And there are plenty of logs to be found: logs for the system, logs for the kernel, for package managers, for Xorg, for the boot process, for Apache, for MySQL… For nearly anything you can think of, there is a log file. Read more

At Long Last, Linux Gets Dynamic Tracing

When the Linux kernel version 4.9 will be released next week, it will come with the last pieces needed to offer to some long-awaited dynamic thread-tracing capabilities. As the keepers of monitoring and debugging software start using these new kernel calls, some of which have been added to the Linux kernel over the last two years, they will be able to offer much more nuanced, and easier to deploy, system performance tools, noted Brendan Gregg, a Netflix performance systems engineer and author of DTrace Tools, in a presentation at the USENIX LISA 2016 conference, taking place this week in Boston. Read more