Security researchers: More Trojans lock the target Linux System

Earlier this month, system security researchers presented a Security Report on an unknown Trojan program that has never been used before. It may be helpful for researchers to gain a deep understanding of malware technologies. Early analysis data shows that this trojan attack is more dangerous, but the level is relatively normal. From the code point of view, this program is made according to the Trojan standard of Windows system. Systems security vendors have noticed that this program seems to be a design sample that may have commercial purposes rather than targeted attacks.

Researchers believe that the trojan is intended to attack the web server, infect the 64-bit Linux kernel, and then launch code attacks on the web page. From this detected Trojan, it seems that hackers are beginning to love opening a knife to the Linux system. After all, the attack is more difficult. This malicious program runs at the kernel level of the operating system and has the ability to avoid being detected by common anti-virus software.

"Although from the perspective of code quality, this trojan may not be well done for advanced target attacks, but at least it started to warn people, hackers specializing in the preparation of Windows System Trojans have begun to turn to the Linux platform." Security enterprise Crowdstrike wrote in its malware sample analysis article. "Looking at the missing part of the code, we will find that this is not a well-laid targeted attack behavior ."

Crowdstrike's security researchers explained that from the Trojan attack behavior, it seems that malicious software developers are working for a project to present the buyers. Marta Janus, a researcher from the Kaspersky Lab, said there are still many changes to the attack method that this program requires only a slight change.

Janus wrote: "Although this trojan should still be in the development stage, we should see more such malicious programs on Linux in the future ."