Author |
Message |
darkcity

Joined: 23 May 2010 Posts: 2545 Location: near here
|
Posted: Mon 25 Mar 2013, 10:31 Post subject:
Linux malware attack in S Korea - what happen to spot, Subject description: root still safe? |
|
Malware was able to execute bash script on a Linux box remotely via Windows. (Affected Linux machines must have been running as root?)
https://www.infoworld.com/d/security/symantec-finds-linux-wiper-malware-used-in-s-korean-attacks-214965
http://www.symantec.com/connect/blogs/remote-linux-wiper-found-south-korean-cyber-attack
mention on action show
http://www.youtube.com/watch?v=rY9rJhNr5Q0&t=21m
I thought browsers ran as Spot on Puppy? But not on Seamonkey with Slacko?
Description |
|
Filesize |
86.22 KB |
Viewed |
695 Time(s) |

|
_________________ helping Wiki for help
|
Back to top
|
|
 |
Ted Dog

Joined: 13 Sep 2005 Posts: 4013 Location: Heart of Texas
|
Posted: Mon 25 Mar 2013, 18:00 Post subject:
|
|
Dang, hope they can't remotely erase my boot DVD's
Also It using a windows exploit to prep an executable script to drop into /tmp/cups for multiple OSes not just linux. It patches a xml sniffer on Windows to grab remote desktop running in Windows logging into a remote machine as the root user.
If you use that method for running puppylinux then STOP!
Otherwise nice FUD attempt.
Has ZERO to do with seamonkey running as root.
|
Back to top
|
|
 |
Q5sys

Joined: 11 Dec 2008 Posts: 1126
|
Posted: Mon 25 Mar 2013, 18:22 Post subject:
|
|
Ted Dog wrote: | Dang, hope they can't remotely erase my boot DVD's |
Oh they can... better be careful they can also make your toaster explode.
|
Back to top
|
|
 |
Ted Dog

Joined: 13 Sep 2005 Posts: 4013 Location: Heart of Texas
|
Posted: Mon 25 Mar 2013, 18:29 Post subject:
|
|
Quick everybody patch the rc.local add this line to end
now would like to see them-there N Korean hackers reach through the intertubes and physically close the dvd drawer
|
Back to top
|
|
 |
p310don
Joined: 19 May 2009 Posts: 1164 Location: Brisbane, Australia
|
Posted: Mon 25 Mar 2013, 18:56 Post subject:
|
|
if they manage to do that, they might get through the interwebs, take your ejected DVD and put it in the microwave - make for sparkly fun
|
Back to top
|
|
 |
raffy
Joined: 25 May 2005 Posts: 4839 Location: Manila
|
Posted: Mon 25 Mar 2013, 22:37 Post subject:
Re:spot |
|
darkcity wrote: | I thought browsers ran as Spot on Puppy? |
Fatdog64 loads the browser with user spot - one disadvantage of this is that your browser could not see files outside the folders owned by spot (obviously, but I always forget 'coz I've grown up using root in Puppy).
_________________ Puppy user since Oct 2004. Want FreeOffice? Get the sfs (English only).
|
Back to top
|
|
 |
Johnny Pest
Joined: 19 Jan 2012 Posts: 5 Location: Philippines
|
Posted: Mon 25 Mar 2013, 23:15 Post subject:
What about the save files? |
|
Hi,
What would happen if you have save files to a frugal install?
would there be a possible recovery?
At the very least, i save on different mount points.
|
Back to top
|
|
 |
Ted Dog

Joined: 13 Sep 2005 Posts: 4013 Location: Heart of Texas
|
Posted: Tue 26 Mar 2013, 09:30 Post subject:
|
|
p310don wrote: | if they manage to do that, they might get through the interwebs, take your ejected DVD and put it in the microwave - make for sparkly fun |
I left the house, DVD was ejected, then I returned home the dvd was IN and computer rebooted.
So IF they can cut power that would reboot computer and the hardware automatically pulls the disc back in.... Sneaky NK hackers.
|
Back to top
|
|
 |
|