Linux Users Targeted by Trojan

For years, Linux has been free from the threat of trojans, viruses and malware.  We Linux users have often watched as friends or family who use Windows have had passwords stolen, hard drives made inaccessable – figuring that it can’t happen to us.

According to an article in Techworld, we have now become a target in our own right. Russian computer security firm Dr. Web has reported finding a trojan that steals passwords on Linux as well as Mac OS X. Specifically, the backdoor trojan Wirenet.1 targets browser passwords for Firefox, Google Chrome, Chromium, Opera, as well as for applications such as Thunderbird, SeaMonkey and Pidgin.

Under Linux it copies itself to the ~/WIFIADAPT directory, then attempts to connect to a command and control server hosted at using an AES encrypted channel.

The Techworld article had some good news, however: “the details of how this malware might grab root mode on a Linux system are unknown.” Without root access, the damage the trojan can do would be limited.

Just a suggestion, for those of us who use Ubuntu:

sudo apt-get install clamtk

Clamtk is a front end for the antivirus clamav. This gives us a free and open source antivirus option.

4 Responses to “Linux Users Targeted by Trojan”

  1. 1 reformedmusings September 3, 2012 at 9:59 pm

    Thanks for the heads up and the background links. I recently moved to LastPass and emptied my Firefox and Google password lists. That and the usual prudence should help. LastPass has been pretty convenient all around.

  2. 2 ubuntulady September 4, 2012 at 1:35 am

    Thank you for the recommendation. And you’re welcome about the heads up.

  3. 3 ubuntulady September 6, 2012 at 2:07 am

    Thank you.

  1. 1 Linux & Mac multi-platform Trojan on the loose « Reformed Musings Trackback on September 6, 2012 at 1:10 am

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s


September 2012

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 21 other followers

%d bloggers like this: