You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2021-02-03 14:53:30
- Altoid
- Member
- Registered: 2017-05-07
- Posts: 566
Kobalos malware - possibly ported to Linux
Hello:
Just a heads up so we're all on our toes:
This morning's article in The Register:
https://www.theregister.com/2021/02/03/kobalos_malware/
ESET page on the matter:
We reverse engineered this small, yet complex, malware that is portable to many operating systems including Linux, BSD, Solaris, and possibly AIX and Windows.
https://www.welivesecurity.com/2021/02/ … structure/
Best,
A.
Last edited by Altoid (2021-02-03 14:55:51)
Online
#2 2021-02-04 07:01:38
Re: Kobalos malware - possibly ported to Linux
Thanks for the heads up.
From this article it says...
https://insidehpc.com/2021/02/report-se … x-malware/
To reduce the Kobalos threat, ESET suggested implementing a two-factor authentication for connecting to SSH servers because “stolen credentials seems to be one of the ways it is able to propagate to different systems.”
Last edited by dice (2021-02-04 07:02:04)
“That which is below is like that which is above, and that which is above is like that which is below, to perform the miracles of one only thing.”
-Hermes Trismegistos
Offline
#3 2021-02-04 16:14:29
- Head_on_a_Stick
- Member
- From: London
- Registered: 2019-03-24
- Posts: 1,366
- Website
Re: Kobalos malware - possibly ported to Linux
To remove the risk completely:
# apt purge openssh-{client,server}Black Lives Matter
Offline
#4 2021-02-05 12:13:42
Re: Kobalos malware - possibly ported to Linux
To remove the risk completely:
# apt purge openssh-{client,server}
Be nice to see libressl ported to devuan/debian as in maintained by devuan/debian. If i was smart enough i would give it a try. Not that it matters with this type of malware i dont suppose.
“That which is below is like that which is above, and that which is above is like that which is below, to perform the miracles of one only thing.”
-Hermes Trismegistos
Offline
Pages: 1
