Slashdot Mirror
Akamai Warns: Linux Systems Infiltrated and Controlled In a DDoS Botnet
An anonymous reader writes Akamai Technologies is alerting enterprises to a high-risk threat of IptabLes and IptabLex infections on Linux systems. Malicious actors may use infected Linux systems to launch DDoS attacks against the entertainment industry and other verticals. The mass infestation of IptabLes and IptabLex seems to have been driven by a large number of Linux-based web servers being compromised, mainly by exploits of Apache Struts, Tomcat and Elasticsearch vulnerabilities. Attackers have used the Linux vulnerabilities on unmaintained servers to gain access, escalate privileges to allow remote control of the machine, and then drop malicious code into the system and run it. As a result, a system could then be controlled remotely as part of a DDoS botnet. The full advisory is available for download only with registration, but the (Akamai-owned) Prolexic page to do so is quite detailed.
everyone knows only windows can get infected
So, to remove this do I just have to do this? /sbin/iptables
sudo rm -r
GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
They should have installed Gentoo!
In hopes that the 'malicious actors' would get tired of waiting for the required binaries to be built and give up?
Never start vast projects with half-vast ideas.
Are porn sites part of "entertainment industry"? If so, this is a serious threat and it needs dealt with ASAP.
...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
I prefer to throw at the users. The chance to hit the culprit is so much higher.
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.