(get it in RSS or Atom)

Multi-platform backdoor malware targets Windows, Mac and Linux users

Multi-platform backdoor malware targets Windows, Mac and Linux users

A web-based malware attack has been discovered, targeting users of Windows, Mac and Linux.

Although the amount of malware written for different operating systems can vary, it's becoming increasingly hard to argue that it's safe to surf the web on any OS without anti-virus protection.

FLAMING RETORT: All this new Mac malware - whose fault is it?

FLAMING RETORT: It's all your fault!

Flaming Retort is back, this time trying to Coole and Explayne the flames we've had from some Mac users in the past few days.

In a back-to-front way of making Mac fans feel better, I'll start by making everyone feel slightly worse, taking a small potshot at Windows, OS X and Linux fans alike.

Welcome back, Linux kernel!

Welcome back, Linux kernel!

Just under a month ago, the official distribution site for the Linux kernel was taken offline following an embarrasing malware incident.

The good news is that is back online. It's not all roses, though.

Apple fakery, DNS hack, DigiNotar, Linux, Wikileaks - 60 Sec Security


Lots of readers said they'd like to see our 'news-with-a-conscience' videos more than once a month.

So here you go. 60 Second Security, once every two weeks.

Security breach: and Linux Foundation remain "temporarily unavailable"

Linux world in security spinout as Linux Foundation and remain "temporarily unavailable"

The Linux world is in a bit of a security spinout at the moment.

Could this be the moment that you finally decide to try OpenBSD?

IT security - what you must know in the mobile era

IT security - what you must know in the mobile era

Worried about the cloud? Data breaches? Mobile devices? Identity theft?

Join presenter James Kirby and experts Stephen Wilson, Charis Palmer and (ahem) me as we talk on the subject of IT security - what you must know in the mobile era.

Skype protocol cracked - what happens next?


A chap by the name of Efim Bushmanov has just published a claim that he has reverse-engineered the Skype protocol.

But how did he do it? And will the lawyers take it from here?

FLAMING RETORT: Cooling the friction when Linux meets anti-virus


Welcome to the first installment of a brand new Naked Security column, Flaming Retort!

This week, Sophos Voice of Reason Paul Ducklin soothes the friction which seems to warm things up whenever Linux meets anti-virus.

New variant of cross-platform Boonana malware discovered

Cross-platform malware attack strikes again

Mac user? Windows user? It doesn't really matter when it comes to cross-platform malware. A new version of the Boonana Trojan horse has been discovered.

VIDEO: Cross-platform malware runs on Windows, Mac and Linux


Watch a video of the Boonana malware as it infects on Windows, Mac and Ubuntu Linux via a malicious Java applet.

Cross-platform Boonana Trojan targets Facebook users

Cross-platform malware spreads via Facebook

The Boonana malware targets Mac OS X, Linux and Windows, and is being spread via Facebook. Don't think you're immune from attacks just because you don't run Windows..

PerlBot: A reason to run anti-virus on Linux?

PerlBot: A reason to run anti-virus on Linux?

This morning I noticed that SANS were talking about a Perl bot that has been reported on various Unix systems. I went looking for this file and noticed that a colleague had already updated the identity for Mal/PerlBot-A to detect Read more…

Linux Trojan rears its ugly head

UnrealIRCd logo

Next to OS X users, Linux users are the most arrogant in their perception that they are immune to malware infections. Unfortunately for them, this morning the administrators of had to post that their Unix/Linux source code had been Read more…

CanSecWest 2010 day 3 summary

Image (2) rfidguardian150.png for post 2789

The conference has now drawn to a close and Michael Argast and I have made CanSecWest this week's podcast topic. Our weekly podcasts have been going well so far and I would like to thank our editor/producer Maria Varmazis for Read more…

CanSecWest 2010 day 2 summary

Image (1) cansecwest200.png for post 2787

The second day of CanSecWest was a beautiful day in Vancouver. The day was full of information-packed sessions and anticipation for the evening dinner party reception. "SEH overwrite and its exploitability - Shuichiro Suzuki" Shuichiro, who works for Forteenforty, demonstrated Read more…

CanSecWest 2010 Day 1

Image (1) cansecbadge250.jpg for post 2786

As a Vancouverite it always seemed to be a bit of a shame that I have never attended a CanSecWest conference. This year I am here, the 11th annual CanSecWest conference, and I would like to thank Dragos Ruiu for Read more…

Sophos wins VB100 award for SUSE Linux protection

Image (1) vb100-feb2010.jpg for post 15800

The latest edition of Virus Bulletin magazine has tested a slew of Linux anti-virus products. Symantec and McAfee were amongst the security vendors who opted not to participate in the test, leaving some nine products in the running. Just as Read more…

Protect your web assets - Is Linux still safe?

Image (1) tuxtiedup.gif for post 2846

The Register is reporting today that Linux servers have been recruited into a botnet. In May we saw TROJ/JSRedir-R and many variants thereof attacking web servers. Last November SophosLabs reported that after more than six years there are still over Read more…

Linux/Rst-B - very much alive and kicking

Default image

Last month a snippet of our Linux malware research was published in Virus Bulletin. Virus Bulletin is the de facto anti-malware publication but is only available via subscription. With their permission, we decided to republish some of the results here. Read more…

Botnets, a free tool and 6 years of Linux/Rst-B

IRC and botnets

I have mentioned before that we regularly see Linux malware infected with an old Linux virus, Linux/Rst-B. It is 6 years to the day when we first saw Linux/Rst-B and despite reputable anti-virus solutions having being able to detect it since then, we keep seeing Read more…