Russian Drovorub Malware Targeting Linux

by
frankbell
from LinuxQuestions.org on (#56YHE)
Per Bruce Schneier, here's the press release.

An excerpt:

Quote:
Drovorub is a Linux malware toolset consisting of an implant coupled with a kernel module rootkit, a file transfer and port forwarding tool, and a command and control (C2) server. When deployed on a victim machine, Drovorub provides the capability for direct communications with actor-controlled C2 infrastructure; file download and upload capabilities; execution of arbitrary commands; port forwarding of network traffic to other hosts on the network; and implements hiding techniques to evade detection.
latest?d=yIl2AUoC8zA latest?i=M7sD4Qu6fek:7p6Zlw6gbDc:F7zBnMy latest?i=M7sD4Qu6fek:7p6Zlw6gbDc:V_sGLiP latest?d=qj6IDK7rITs latest?i=M7sD4Qu6fek:7p6Zlw6gbDc:gIN9vFwM7sD4Qu6fek
External Content
Source RSS or Atom Feed
Feed Location https://feeds.feedburner.com/linuxquestions/latest
Feed Title LinuxQuestions.org
Feed Link https://www.linuxquestions.org/questions/
Reply 0 comments