Linux

(get it in RSS or Atom)

Linux Trojan rears its ugly head

by Chester Wisniewski on June 12, 2010 | 1 Comment
UnrealIRCd logo

Next to OS X users, Linux users are the most arrogant in their perception that they are immune to malware infections. Unfortunately for them, this morning the administrators of UnrealIRCd.com had to post that their Unix/Linux source code had been Read more…

CanSecWest 2010 day 3 summary

by Chester Wisniewski on March 30, 2010 | Leave a comment
Image (2) rfidguardian150.png for post 2789

The conference has now drawn to a close and Michael Argast and I have made CanSecWest this week's podcast topic. Our weekly podcasts have been going well so far and I would like to thank our editor/producer Maria Varmazis for Read more…

CanSecWest 2010 day 2 summary

by Chester Wisniewski on March 27, 2010 | Leave a comment
Image (1) cansecwest200.png for post 2787

The second day of CanSecWest was a beautiful day in Vancouver. The day was full of information-packed sessions and anticipation for the evening dinner party reception. "SEH overwrite and its exploitability - Shuichiro Suzuki" Shuichiro, who works for Forteenforty, demonstrated Read more…

CanSecWest 2010 Day 1

by Chester Wisniewski on March 25, 2010 | Leave a comment
Image (1) cansecbadge250.jpg for post 2786

As a Vancouverite it always seemed to be a bit of a shame that I have never attended a CanSecWest conference. This year I am here, the 11th annual CanSecWest conference, and I would like to thank Dragos Ruiu for Read more…

Sophos wins VB100 award for SUSE Linux protection

by Graham Cluley on February 1, 2010 | Comments Off
Image (1) vb100-feb2010.jpg for post 15800

The latest edition of Virus Bulletin magazine has tested a slew of Linux anti-virus products. Symantec and McAfee were amongst the security vendors who opted not to participate in the test, leaving some nine products in the running. Just as Read more…

Protect your web assets - Is Linux still safe?

by Chester Wisniewski on September 12, 2009 | Leave a comment
Image (1) tuxtiedup.gif for post 2846

The Register is reporting today that Linux servers have been recruited into a botnet. In May we saw TROJ/JSRedir-R and many variants thereof attacking web servers. Last November SophosLabs reported that after more than six years there are still over Read more…

Linux/Rst-B - very much alive and kicking

by SophosLabs on September 8, 2008 | Comments Off
Default image

Last month a snippet of our Linux malware research was published in Virus Bulletin. Virus Bulletin is the de facto anti-malware publication but is only available via subscription. With their permission, we decided to republish some of the results here. Read more…

Botnets, a free tool and 6 years of Linux/Rst-B

by SophosLabs on February 13, 2008 | Comments Off
IRC and botnets

I have mentioned before that we regularly see Linux malware infected with an old Linux virus, Linux/Rst-B. It is 6 years to the day when we first saw Linux/Rst-B and despite reputable anti-virus solutions having being able to detect it since then, we keep seeing Read more…