Linux malware attack in S Korea - what happen to spot,

For discussions about security.
Post Reply
Message
Author
User avatar
darkcity
Posts: 2534
Joined: Sun 23 May 2010, 19:16
Location: near here
Contact:

Linux malware attack in S Korea - what happen to spot,

#1 Post by darkcity »

Malware was able to execute bash script on a Linux box remotely via Windows. (Affected Linux machines must have been running as root?)
https://www.infoworld.com/d/security/sy ... cks-214965
http://www.symantec.com/connect/blogs/r ... ber-attack
mention on action show
http://www.youtube.com/watch?v=rY9rJhNr5Q0&t=21m

I thought browsers ran as Spot on Puppy? But not on Seamonkey with Slacko?
Attachments
root-top.jpg
(86.22 KiB) Downloaded 719 times

User avatar
Ted Dog
Posts: 3965
Joined: Wed 14 Sep 2005, 02:35
Location: Heart of Texas

#2 Post by Ted Dog »

Dang, hope they can't remotely erase my boot DVD's :lol:

Also It using a windows exploit to prep an executable script to drop into /tmp/cups for multiple OSes not just linux. It patches a xml sniffer on Windows to grab remote desktop running in Windows logging into a remote machine as the root user.

If you use that method for running puppylinux then STOP!

Otherwise nice FUD attempt. :twisted:

Has ZERO to do with seamonkey running as root.

User avatar
Q5sys
Posts: 1105
Joined: Thu 11 Dec 2008, 19:49
Contact:

#3 Post by Q5sys »

Ted Dog wrote:Dang, hope they can't remotely erase my boot DVD's
Oh they can... better be careful they can also make your toaster explode.
;)

User avatar
Ted Dog
Posts: 3965
Joined: Wed 14 Sep 2005, 02:35
Location: Heart of Texas

#4 Post by Ted Dog »

Quick everybody patch the rc.local add this line to end

Code: Select all

eject /dev/sr0
:lol:

now would like to see them-there N Korean hackers reach through the intertubes and physically close the dvd drawer :wink:

p310don
Posts: 1492
Joined: Tue 19 May 2009, 23:11
Location: Brisbane, Australia

#5 Post by p310don »

if they manage to do that, they might get through the interwebs, take your ejected DVD and put it in the microwave - make for sparkly fun

raffy
Posts: 4798
Joined: Wed 25 May 2005, 12:20
Location: Manila

Re:spot

#6 Post by raffy »

darkcity wrote:I thought browsers ran as Spot on Puppy?
Fatdog64 loads the browser with user spot - one disadvantage of this is that your browser could not see files outside the folders owned by spot (obviously, but I always forget 'coz I've grown up using root in Puppy). :oops:
Puppy user since Oct 2004. Want FreeOffice? [url=http://puppylinux.info/topic/freeoffice-2012-sfs]Get the sfs (English only)[/url].

Johnny Pest
Posts: 5
Joined: Fri 20 Jan 2012, 02:14
Location: Philippines
Contact:

What about the save files?

#7 Post by Johnny Pest »

Hi,

What would happen if you have save files to a frugal install?

would there be a possible recovery?

At the very least, i save on different mount points.

User avatar
Ted Dog
Posts: 3965
Joined: Wed 14 Sep 2005, 02:35
Location: Heart of Texas

#8 Post by Ted Dog »

p310don wrote:if they manage to do that, they might get through the interwebs, take your ejected DVD and put it in the microwave - make for sparkly fun
I left the house, DVD was ejected, then I returned home the dvd was IN and computer rebooted. :shock:

So IF they can cut power that would reboot computer and the hardware automatically pulls the disc back in.... Sneaky NK hackers. :wink:

Post Reply