Language Selection

English French German Italian Portuguese Spanish

“Hand of Thief” banking trojan doesn’t do Windows—but it does Linux

Filed under
Linux
Security

Signaling criminals' growing interest in attacking non-Windows computers, researchers have discovered banking fraud malware that targets people using the open-source Linux operating system.

Hand of Thief, which was recently discovered by researchers from security firm RSA, sells for about $2,000 in underground Internet forums and boasts its own support and sales agents. Its functionality—consisting of form grabbers and backdoor capabilities—is rudimentary compared to Windows banking trojans spawned from the Citadel or Blackhole exploit kits, but that's likely to change. RSA researcher Limor Kessem said she expects Hand of Thief to become a full-blown banking trojan that includes more advanced features such as the ability to inject attacker-controlled content into trusted bank webpages.

"Although Hand of Thief comes to the underground at a time when commercial trojans are high in demand, writing malware for the Linux OS is uncommon, and for good reason," Kessem wrote. "In comparison to Windows, Linux's user base is smaller, considerably reducing the number of potential victims and thereby the potential fraud gains."

rest here




More in Tux Machines

today's leftovers

Linux Development and LinuxCon

  • Linus Torvalds says GPL was defining factor in Linux's success
    Linus Torvalds and Dirk Hohndel, vice president and chief of open source at VMware, discussed the role that GNU GPL played in the success of Linux during a keynote conversation this week at LinuxCon NA in Toronto. Hohndel, who has been involved with the kernel for a very long time, said that during the past 25 years there have been many challenges, and one of the biggest challenges was the possibility of fragmentation. "How do we keep one single kernel?" he asked. "I used to be worried about fragmentation, and I used to think that it was inevitable at some point," said Torvalds. “Everyone was looking at the history of Linux and comparing it with UNIX. People would say that it’s going to fail because it's going to fragment. That's what happened before, so why even bother?" What made the difference was the license. "FSF [Free Software Foundation] and I don't have a loving relationship, but I love GPL v2," said Torvalds. "I really think the license has been one of the defining factors in the success of Linux because it enforced that you have to give back, which meant that the fragmentation has never been something that has been viable from a technical standpoint."
  • Making Use Of eBPF In The Mainline Linux Kernel
    One of the exciting innovations within the Linux kernel in the past few years has been extending the Berkeley Packet Filter (BPF) to become a more generalized in-kernel virtual machine. The eBPF work with recent versions of the Linux kernel allow it to be used by more than just networking so that these programs can be used for tracing, security, and more.
  • Linux turns 25 with a brilliant history
    Chances are, you use it every day. Linux runs every Android phone and tablet on Earth. And even if you’re on an iPhone or a Mac or a Windows machine, Linux is working behind the scenes, across the Internet, serving up most of the webpages you view and powering most of the apps you use. Facebook, Google, Pinterest, Wikipedia—it’s all running on Linux. Now, Linux is finding its way onto televisions, thermostats, and even cars. As software creeps into practically every aspect of our lives, so does the OS designed by Linus Torvalds.
  • Intel Lost Another Open-Source Driver Developer To Google Earlier This Summer
    There was another long-time Intel open-source Linux graphics driver developer that left the company earlier this summer and is now working at Google on the Chrome/Chromium OS graphics stack. Among the notable departures in the past few months from Intel's Open-Source Technology Center were Jesse Barnes, Wayland-founder Kristian Høgsberg, and Dirk Hohndel and apparently others that went under the radar or outside of our area of focus. Another graphics driver developer no longer at Intel is Chad Versace.
  • OpenGL ES 3.1 For Haswell Lands With Intel's Mesa Driver