NPC Seal
We use cookies to ensure you get the best browsing experience. By continued use, you agree to our privacy policy and accept our use of such cookies. For further information, click FIND OUT MORE.
I AGREE FIND OUT MORE
x
advertisement
Filtered by: Scitech
SciTech

Linux Trojan being sold in malware market


The relatively carefree days of using computers running Linux may be numbered, after a new Trojan that steals banking data has been found to target the platform.

Security researcher Limor Kessem said a Russia-based cybercrime team is targeting Linux machines with the "Hand of Thief" Trojan.

"'Hand of Thief' is a Trojan designed to steal information from machines running the Linux OS. This malware is currently offered for sale in closed cybercrime communities for $2,000 (€1,500) with free updates," Kessem, an analyst for RSA, said in a blog post.

She said the present Trojan includes form grabbers and backdoor capabilities, but may soon include web injections.

It may even "graduate to become full-blown banking malware in the very near future," she said.

By then, she said the Trojan may cost $3,000 (€2,250), plus a hefty $550 per major version release.

"These prices coincide with those quoted by developers who released similar malware for the Windows OS, which would make Hand of Thief relatively priced way above market value considering the relatively small user base of Linux," she said.

Linux has been relatively free from malware attacks due to the small number of people using it, as compared to those using Microsoft's Windows and even Apple's Mac OS.

Kessem said the Trojan’s developer claims the malware has been tested on 15 Linux desktop distributions, including Ubuntu Fedora and Debian.

She said an analysis of the malware shows it can work in browsers including Firefox and Chrome, as well as Linux-only browsers like Chromium, Aurora, and Ice Weasel.

It has a block list that blocks access to security updates and anti-virus providers.

A separate article on PC World quoted Kessem as saying that with the lack of exploits targeting Linux, social engineering and email may be the most likely attack vectors.

"Historically, desktop Linux users have been more or less isolated from the constant malware scares that plague Windows, which is at least partially a function of the fact that their numbers represent a tiny fraction of the Windows installed base," it added.

Still, it noted users of Linux-based Android smartphones have become increasingly tempting targets for computer crime.

"And with the aforementioned growth in desktop users, the number of threats may increase even further," it said. — VC, GMA News

Tags: malware, trojan, linux, technology
LATEST ELEKSYON 2025 RESULTS
News
Voter's Education
Candidates
Find out your candidates' profile
Debates
Find the latest news
Stand on Issues
Find out individual candidate platforms
MyKodigo
Choose your candidates and print out your selection.
Voter's Profile
Voter Demographics
Most Popular