Regarding the OrBit Linux malware, it is clear from the description that the malware needs superuser access to infect the machine. The counter is obvious; don't use the root account unless you really have to, and if you have to then be paranoid.
North Koreans spotted harassing SMBs with malware
SMBs, beware: Microsoft said this week it has discovered a North Korean crew targeting small businesses with ransomware since September of last year. The group, which calls itself H0lyGh0st, appears to be primarily motivated by money, Microsoft Threat Intelligence Center (MSTIC) researchers said. After the gang gets its …
COMMENTS
-
-
-
-
Monday 18th July 2022 06:16 GMT doublelayer
Re: Fix
Well, it didn't serve you well this time. In fact, the only OS they mentioned having malware on it was Linux. And it wasn't a security hole in Linux, in case you were going to change the target. In that case as in many of the Windows malware cases, the vulnerability was in the users, administrators, and configs created by both which allow software to do things it's allowed to do but not desired by the users. Perfect security is impossible.
-
-
-
-
-
-
This post has been deleted by its author
-
-
Sunday 17th July 2022 15:02 GMT Anonymous Coward
Set your soul f(r)ee!
H0lyGh0st is well known to be operating out of a semi-legal quasi-state located near Rome, and for centuries/millennia have demanded penance for the indulgence of those believing they have infected/corrupted souls, said belief induced by browsing certain scriptures - operated by none other than H0lyGh0st themselves.
-
Monday 18th July 2022 08:48 GMT Danny 2
The Terminal List
It's a Prime Video series about a nefarious security corporation. Halfway through there is the line (from memory):
"He accessed the internal server. We don't know what he downloaded but we suspect he gave it to a journalist"
THE internal server? Only one server for a corporation? And it wasn't logged to see what was accessed, but you assume it went to a journalist for no apparent reason?
Scripts that SEALs enjoy aren't scripts we'd enjoy. But I'll watch the rest anyway because I'd like to be a SEAL, although I'd rather be a seal.