Be alert for the arrival of more Linux Trojans

A Linux user who is used to operating without malware harassment should be long-hearted. A researcher in RSA described the existence of the Hand of Thief Trojan, which is targeted at Linux.

Limor Kessem, a network intelligence expert, said that the Hand of Thief behavior is similar to that of malware that attacks Windows machines. Even if users Use HTTPS, once Hand of Thief is installed, they can steal information from the Web, create a backdoor program to direct access to the infected machine and try to block access to the anti-virus Update Server, virtual machine, and other potential investigation methods.

According to Kessem, the current price of Hand of Thief in the underground trading market is USD 2000, including free updates. However, the new web injection tool technology to be added will increase the price to $3000, and major version updates will need to pay another $550.

"These prices are similar to those for developing malware that attacks Windows operating systems. This makes Hand of Thief pricing much more valuable than the market value. After all, Linux users have little base ."

However, first getting Linux computers infected poses a challenge to thieves. Kessem says the lack of development for the target Linux means that social engineering and mailbox are the easiest attack medium.

Kessem also said the growth of Desktop Linux users-in part because they felt insecure about Windows systems-could potentially drive more malware like Hand of Thief, because the number of attacks is greatly increased.

Historically, Desktop Linux users are more or less isolated from malware that harms Windows. This is because of their small base and has little impact on Windows users.

However, Android smartphone users based on Linux have become the targets of attacks, and the growth of Desktop Linux users mentioned above has become an unprecedented threat.