Skip to main content

CRN, By Rob Westervelt 

Linux, the operating system built and maintained via a cadre of volunteers that make up the open source community, has been relatively immune to dangerous threats. New research into a menacing targeted attack toolkit built for Windows PCs, however, identified components that suggest Linux users are also in its crosshairs.

An analysis of new malware samples associated with the Turla targeted attack toolkit uncovered the first components focused on the Linux operating system. Clues uncovered in the malware parallel the complex code associated with the Snake cyberespionage operation, which is said to have infiltrated some systems operated by the U.S. Department of Defense, as well as defense contractors and other organizations in the U.K. and other Western European countries, according to new Kaspersky Lab analysis of Turla released on Monday.

Kaspersky Lab said the Linux components are supported by a hidden network of communications and have broad functionality to execute a variety of commands and be remotely controlled by the attackers. The malware, believed to be fairly new, doesn't need deep "root" access into systems to remain stealthy, according to Kaspersky, and appears to support ongoing cyberespionage activity, functioning as a file server. Read more.

Linux Systems Caught In Targeted Attack Crosshairs - CRN

Linux Systems Caught In Targeted Attack Crosshairs - CRN
Kaspersky Logo