Posts Tagged ‘Linux servers’

Detected Linux-botnet used to commit a large-scale DDoS-attacks

Posted: September 12, 2014 in IT Security News
Tags: , , , ,
2
Linux

Linux-botnet

The Botnet infected Linux-servers which used a vulnerable version of Apache Tomcat, Apache Struts and Elasticsearch.

Experts of Akamai-Prolexic discovered a botnet known as IptabLes and IptabLex. It was used to carry out DDoS-attacks on the DNS-servers and other objects of the network infrastructure. Victims of botnet became misconfigured Linux-servers.

According to experts, in the second quarter of 2014 Prolexic team discovered botnet conducting DDoS-attacks using DNS-flooding and SYN-flooding. The attacks were carried out through compromised servers running a vulnerable version of Apache Struts, Apache Tomcat and Elasticsearch. (more…)

The new version of the Trojan threatens servers on the basis of Linux

Posted: June 11, 2013 in IT Security News
Tags: , , , ,
0

Dr. WebThe company “Dr. Web” found a new version of the Trojan Linux.Sshdkit, represent a danger to the Linux servers.

According to statistics compiled by analysts, by far the Trojans from the actions of this family have been affected by several hundreds of servers, some of which are large servers hosting providers.

About the first versions of the malware Linux.Sshdkit company “Dr. Web” reported in February 2012. This Trojan is a dynamic library. In this case, there exist a variety of both 32-bit and 64-bit versions of Linux distributions Linux. After a successful installation in the Trojan into the process of sshd, intercepting the authentication function. After installing the session and successfully entering the user name and password are sent to the attacker’s remote server. (more…)