Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Rootkit Targeting 64-bit Linux Systems and Carrying Out iFrame Injections Found

hypnosec (2231454) writes | about 2 years ago

Linux 0

hypnosec (2231454) writes "Security researchers have come across a piece of code that seems to be some unfinished rootkit targeting Linux systems and that employs never used before methods of hiding malicious commands. First spotted on Seclists' Full Disclosure Mailing List the rootkit specifically targets Linux kernel version 2.6.32-5-amd64 that is found on 64-bit Debian Squeezy systems and uses "advanced techniques to hide itself," while infecting websites hosted on compromised webservers by injecting malicious iFrames into the HTTP response traffic by directly modifying the TCP packets in a bid to carry out drive-by-downloads on systems used to access sites hosted on compromised HTTP servers. Experts are of the opinion that this rootkit may be the next step in iFrame injecting cyber crime operations, driving traffic to exploit kits."
Link to Original Source

Sorry! There are no comments related to the filter you selected.

Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?