Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


+ - Rootkit Targeting 64-bit Linux Systems and Carrying Out iFrame Injections Found->

Submitted by hypnosec
hypnosec (2231454) writes "Security researchers have come across a piece of code that seems to be some unfinished rootkit targeting Linux systems and that employs never used before methods of hiding malicious commands. First spotted on Seclists' Full Disclosure Mailing List the rootkit specifically targets Linux kernel version 2.6.32-5-amd64 that is found on 64-bit Debian Squeezy systems and uses "advanced techniques to hide itself," while infecting websites hosted on compromised webservers by injecting malicious iFrames into the HTTP response traffic by directly modifying the TCP packets in a bid to carry out drive-by-downloads on systems used to access sites hosted on compromised HTTP servers. Experts are of the opinion that this rootkit may be the next step in iFrame injecting cyber crime operations, driving traffic to exploit kits."
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Rootkit Targeting 64-bit Linux Systems and Carrying Out iFrame Injections Found

Comments Filter:

Time-sharing is the junk-mail part of the computer business. -- H.R.J. Grosch (attributed)