Linux.Darlloz
Appearance
Operating system | Linux |
---|---|
Type | Botnet |
Linux.Darlloz is a worm which infects Linux embedded systems.[1][2]
Linux.Darlloz was first discovered by Symantec in 2013.[3] Linux.Darlloz targets the Internet of things and infects routers, security cameras, set-top boxes by exploiting a PHP vulnerability.[4][5]
The worm was based on a Proof of concept code that was released in October 2013.[6] Linux.Darlloz utilizes vulnerability (CVE-2012-1823) to exploit systems in order to compromise systems.[7]
Linux.Darlloz was later found in March 2014 to have started mining crypto currencies such as Mincoin and Dogecoin.[8][9]
See also
[edit]References
[edit]- ^ Casad, Joe (December 3, 2013). "New Worm Attacks Linux Devices". Linux Magazine. Retrieved 24 October 2016.
- ^ Mohit Kumar (2013-11-30). "Linux worm targeting Routers, Set-top boxes and Security Cameras with PHP-CGI Vulnerability". The Hacker News. Retrieved 24 October 2016.
- ^ "Symantec discovers Linux.Darlloz worm targetting embedded systems". technology.org. December 3, 2013. Retrieved 24 October 2016.
- ^ Goodin, Dan (2013-11-27). "New Linux worm targets routers, cameras, "Internet of things" devices". Ars Technica. Retrieved October 24, 2016.
- ^ Sterling, Bruce (2014-01-29). "Linux.Darlloz, the Internet-of-Things worm". Wired. Retrieved 24 October 2016.
- ^ Hayashi, Kaoru (27 Nov 2013). "Linux Worm Targeting Hidden Devices". Symantec. Retrieved 24 October 2016.
- ^ Doctorow, Cory (Nov 28, 2013). "Linux.Darlloz worm attacks embedded systems". Boing Boing. Retrieved 24 October 2016.
- ^ Osborne, Charlie (March 20, 2014). "Linux worm Darlloz targets Intel architecture to mine digital currency". ZDNet. Retrieved 24 October 2016.
- ^ Hayashi, Kaoru (19 Mar 2014). "IoT Worm Used to Mine Cryptocurrency". Symantec. Retrieved 24 October 2016.