Troyan Linux.Lady makes Linux servers in miners

in #bitcoin8 years ago


Using the database Redis NoSQL in the default configuration can be a very bad choice. New Trojan that focuses on Linux servers, has been found in "the wild". Trojan uses servers running database Redis NoSQL, rearranging them under mining Bitcoins.
Up to 30,000 servers Redis to a large extent can be vulnerable because careless system administrators put them online without password protection.
Linux.Lady Malware was discovered in Russia Dr.Web antivirus software software in addition Trojan is written using Google Go programming language based on open source library Go, hosted on GitHub.
The malware uses a more compact Trojan called Linux.Downloader.196 for the main load. Linux.Lady, once up and running, according to the basic information about the compromised system, command-server control.
The next step in the process of infection, the configuration file is sent to the C & C server to start cryptocurrency production process in favor of the owners of malware. It should be noted that Linux.Lady - self-propagating Trojan.
"This malware has the ability to collect information about the infected computer and send it to the C & C server, download and run the utility of mining cryptocurrency and attack other computers on the network to install your copy on them," - said in Dr.Web.
After launching, the Trojan checks key system and completes the installation itself, if they are absent. Servers with database Redis has been criticized for poor security. Safety Redis report was submitted in July, with indicators over 6300 compromised Redis server.
Redis is a NoSQL database management system, which is "ideal for storing data in the format key - value (key - value), with the use of RAM for data processing and subsequent requests."
Lack of "extra" safety functions partially explains the high performance Redis in the default configuration.
Redis is REmote DIctionary Server and is the product of the open source project, released in April 2009, sponsored by VMware and Pivotal companies, this database has become quite a popular choice among system administrators.
A source: http://www.theinquirer.net/

Coin Marketplace

STEEM 0.30
TRX 0.26
JST 0.039
BTC 93723.65
ETH 3350.57
USDT 1.00
SBD 3.30