Researchers discovered a banking fraud virus targeting Linux Users

Researchers discovered a banking fraud virus targeting Linux Users

Security company RSA researchers found malicious bank fraud programs for Linux users. The Hand of Thief virus is being sold at an underground forum for $2000. Compared with Windows malware, it is relatively simple and only contains the table crawling and backdoor functions. However, researchers estimate that it is expected to become more mature and feature-rich, allowing users to insert content controlled by attackers into trusted bank web pages.

The Linux user base is relatively small, so the malicious program authors rarely develop virus Trojans for Linux operating systems. Linux's open-source development model also makes it vulnerable to malicious code attacks that exploit security vulnerabilities. However, this point of view is quite controversial among security researchers because there have been unfixed Linux vulnerabilities for many years. The Hand of Thief developer claimed to have tested 15 desktop distributions, including Ubuntu, Fedora, and Debian, supporting eight desktop environments, including Gnome and Kde. Trojan functions include capturing sessions in Firefox, Google Chrome, and other browsers, shielding access security updates and antivirus software addresses, prevents running on virtual machines-possibly to prevent reverse engineering by security researchers and competitors.

Recommended reading:

Scan Trojan viruses with anti-virus software clamav in Linux