Posts Tagged ‘Linux servers’

Linux

Linux-botnet

The Botnet infected Linux-servers which used a vulnerable version of Apache Tomcat, Apache Struts and Elasticsearch.

Experts of Akamai-Prolexic discovered a botnet known as IptabLes and IptabLex. It was used to carry out DDoS-attacks on the DNS-servers and other objects of the network infrastructure. Victims of botnet became misconfigured Linux-servers.

According to experts, in the second quarter of 2014 Prolexic team discovered botnet conducting DDoS-attacks using DNS-flooding and SYN-flooding. The attacks were carried out through compromised servers running a vulnerable version of Apache Struts, Apache Tomcat and Elasticsearch. (more…)

Dr. WebThe company “Dr. Web” found a new version of the Trojan Linux.Sshdkit, represent a danger to the Linux servers.

According to statistics compiled by analysts, by far the Trojans from the actions of this family have been affected by several hundreds of servers, some of which are large servers hosting providers.

About the first versions of the malware Linux.Sshdkit company “Dr. Web” reported in February 2012. This Trojan is a dynamic library. In this case, there exist a variety of both 32-bit and 64-bit versions of Linux distributions Linux. After a successful installation in the Trojan into the process of sshd, intercepting the authentication function. After installing the session and successfully entering the user name and password are sent to the attacker’s remote server. (more…)