• 'FIRST ever' Linux, Mac OS X-only password sniffing Trojan spotted
    46 replies, posted
[QUOTE]Security researchers have discovered a potential dangerous Linux and Mac OS X cross-platform trojan. Once installed on a compromised machine, Wirenet-1 opens a backdoor to a remote command server, and logs key presses to capture passwords and sensitive information typed by victims. The program also grabs passwords submitted to Opera, Firefox, Chrome and Chromium web browsers, and credentials stored by applications including email client Thunderbird, web suite SeaMonkey, and chat app Pidgin. The malware then attempts to upload the gathered data to a server hosted in the Netherlands. The software nastie was intercepted by Russian antivirus firm Dr Web, the company that carried out much of the analysis of the infamous Flashback trojan. Dr Web describes Wirenet-1 as the first Linux/OSX cross-platform password-stealing trojan. Multi-platform virus strains that infect Windows, Mac OS X and Linux machines are extremely rare but not unprecedented. One example include the recent Crisis super-worm. Creating a strain of malware that infects Mac OS X and Linux machines but not Windows boxes seems, frankly, weird given the sizes of each operating system's userbase - unless the virus has been designed for some kind of closely targeted attack on an organisation that uses a mix of the two Unix flavours. Analysis work on the Wirenet-1 is ongoing and for now it's unclear how the trojan is designed to spread. Once executed, it copies itself to the user's home directory, and uses AES to encrypt its communications with a server over the internet.[/QUOTE] [url]http://www.theregister.co.uk/2012/08/29/linux_mac_trojan/[/url] "Windows? Who the hell uses that?"
Whatever happened to Flame? That thing was getting incredibly advanced, then all information just suddenly ceased.
It makes sense. Create a Trojan that doesn't affect the largest computer userbase to avoid detection longer.
[QUOTE=Forumaster;37463430]It makes sense. Create a Trojan that doesn't affect the largest computer userbase to avoid detection longer.[/QUOTE] And hit people who have these massive egos about using either. Its a joke BTW.
I remembered when people would argue that Macs had no viruses.
[QUOTE=Forumaster;37463430]It makes sense. Create a Trojan that doesn't affect the largest computer userbase to avoid detection longer.[/QUOTE] And this is even more dangerous than on Windows since that minority won't be as careful [editline]29th August 2012[/editline] [QUOTE=ROFLBURGER;37463454]I remembered when people would argue that Macs had no viruses.[/QUOTE]That was always bullshit, anyone who argued that was stupid anyway.
Why would you download and run executables from the Internet? :v:
oh shit, I may have to actually install an anti-virus on my Linux partitions now wonder what I should use
[QUOTE=lavacano;37463908]oh shit, I may have to actually install an anti-virus on my Linux partitions now wonder what I should use[/QUOTE] common sense 2012 it works for me
[QUOTE=Jookia;37463703]Why would you download and run executables from the Internet? :v:[/QUOTE] "omg free video games? Download this PC scanner? SURE"
[QUOTE=brianosaur;37464126]common sense 2012 it works for me[/QUOTE] Can we stop the common sense thing, we get it already...
Oh shit..
[QUOTE=brianosaur;37464126]common sense 2012 it works for me[/QUOTE] The thing is, say a site you used became infected, and you went on it. How would common sense save you, if you trust the site?
I remember when people said that Unix had no viruses.
[QUOTE=brianosaur;37464126]common sense 2012 it works for me[/QUOTE] Your avatar + that statement. A+, would trust your advise
trojan. big fucking whoop dee doo [editline]30th August 2012[/editline] heres a linux trojan copy and paste this shit into your terminal [code]forkbomb(){ forkbomb|forkbomb & } ; forkbomb[/code] [editline]30th August 2012[/editline] or the venerable [code]rm -rf /[/code]
[QUOTE=PvtCupcakes;37464753]trojan. big fucking whoop dee doo [editline]30th August 2012[/editline] heres a linux trojan copy and paste this shit into your terminal [code]forkbomb(){ forkbomb|forkbomb & } ; forkbomb[/code] [editline]30th August 2012[/editline] or the venerable [code]rm -rf /[/code][/QUOTE] ...do you even know what a trojan is?
[QUOTE=brianosaur;37464126]common sense 2012 it works for me[/QUOTE] My version of common sense 2000 told me to replace it with an anti-virus program in case my favourite websites get hi-jacked. Ever since then I haven't looked back!
[QUOTE=Zet;37464796]My version of common sense 2000 told me to replace it with an anti-virus program in case my favourite websites get hi-jacked. Ever since then I haven't looked back![/QUOTE] My version of Common Sense 2011 that I downloaded for free online told me to put in my credit card number and PIN now I apparently own boats
[QUOTE=brianosaur;37464126]common sense 2012 it works for me[/QUOTE] considering the resources needed to run an AV (assuming it's not some bloatware), there is no reason not to run one, on any desktop os
[QUOTE=The Baconator;37464810]considering the resources needed to run an AV (assuming it's not some bloatware), there is no reason not to run one, on any desktop os[/QUOTE] There are literally no reasons now, considering the fact that there are actually good free ones
This won't do much damage if you have your system configured properly and don't use root for daily tasks. Even safer if you're not a retard and don't download untrusted content, keychain programs are also a great way to prevent this shit.
[QUOTE=CakeMaster7;37464805]My version of Common Sense 2011 that I downloaded for free online told me to put in my credit card number and PIN now I apparently own boats[/QUOTE] Damn, I knew I shouldn't have waited for a better version to come out. Now I will never own a boat :(
[QUOTE=PvtCupcakes;37464753]trojan. big fucking whoop dee doo [editline]30th August 2012[/editline] heres a linux trojan copy and paste this shit into your terminal [code]forkbomb(){ forkbomb|forkbomb & } ; forkbomb[/code] [editline]30th August 2012[/editline] or the venerable [code]rm -rf /[/code][/QUOTE] This looks nothing like a giant wooden horse
[QUOTE=brianosaur;37464126]common sense 2012 it works for me[/QUOTE] until java comes into the question
[QUOTE=Jookia;37463703]Why would you download and run executables from the Internet? :v:[/QUOTE] without double checking the source code first [editline]30th August 2012[/editline] [QUOTE=Elspin;37464793]...do you even know what a trojan is?[/QUOTE] I think the point is that creating a trojan is incredibly easy regardless of the platform. You don't need to misuse any security fault or exploit. You just give user malicious code and if he is dumb enough to run it, he gets his shit fucked up. Tronjan isn't "hacking", it doesn't mean Linux nor Mac is insecure. Viruses, worms, and such, are gassing your room through the ventilation. Trojan is merely offering you a poisoned cupcake. If there was actually spreading Linux worm or Virus, it would be interesting. This says absolutely nothing about security of Linux nor Mac. You give the system a task, it fulfills it.
[QUOTE=Awesomecaek;37466547]without double checking the source code first[/QUOTE] Haha, but no. Repositories and key signing for the win.
You have to be a complete idiot for this to effect you, pretty much all your software should come from your package manager, anything else should only be downloaded and run if trusted. Pretty much all the software you need is on your package manager.
[QUOTE=areolop;37464691]Your avatar + that statement. A+, would trust your advise[/QUOTE] are you saying i dont have common sense because i have a pro-marijuana avatar? im university educated and street smart [QUOTE=Mike Tyson;37464177]The thing is, say a site you used became infected, and you went on it. How would common sense save you, if you trust the site?[/QUOTE] my common senses will tingle
[QUOTE=Elspin;37464793]...do you even know what a trojan is?[/QUOTE] Yeah, thats why I posted that. The only difference would be I'd have to package up those scripts into something that looks legitimate. idk like "download this music player, just run this script" and bam it runs rm -rf / [editline]30th August 2012[/editline] [QUOTE=ROFLBURGER;37465446]This looks nothing like a giant wooden horse[/QUOTE] its this [img]http://upload.wikimedia.org/wikipedia/commons/thumb/3/3f/Trojan_her_pleasure.jpg/210px-Trojan_her_pleasure.jpg[/img]
Sorry, you need to Log In to post a reply to this thread.