[kwlug-disc] Linux Hacked For A Decade?
Ron Singh
ronsingh149 at gmail.com
Wed Apr 8 19:17:18 EDT 2020
A random paragraph on pg 11 --
*For the first time, BlackBerry researchers have assessed that these groups
are allsharing a previously unidentified Linux malware toolset referred to
in this report as theWINNTILNX toolset. It should be noted that these
groups have also been observedtargeting other platforms as well, including
Windows, Android, and MacOS.Four of these five groups are already known to
the security community as PASSCV,BRONZE UNION (aka APT27, EMISSARY PANDA),
a group tracked internally as CASPER(aka LEAD), and the original WINNTI
GROUP. But the fifth Linux splinter cell group, whichBlackBerry researchers
are tracking as WLNXSPLINTER, is discussed for the first timein this
report. These threat actor groups share three important characteristics:*
Seems to imply that the paper is worth at least a glance?
Thanks,
Ron Singh
On Wed, Apr 8, 2020 at 7:05 PM Ron Singh <ronsingh149 at gmail.com> wrote:
> Hey, any chapter titled, "The Linux Splinter Cell Toolset" sounds too cool
> to pass up reading:-) No, have't read it yet, but will.
> A cursory glance at the TOC suggests that there is some meat on them
> bones...
>
> Thanks,
>
> Ron Singh
>
>
>
> On Wed, Apr 8, 2020 at 7:01 PM jason.eckert <jason.eckert at gmail.com>
> wrote:
>
>> Anything worthy of note in the PDF, or is it just trivial
>> marketing-driven scare mongering?
>>
>>
>>
>> Sent from my Samsung device running Android (basically Linux in drag)
>>
>>
>> -------- Original message --------
>> From: Ron Singh <ronsingh149 at gmail.com>
>> Date: 2020-04-08 18:42 (GMT-05:00)
>> To: KWLUG discussion <kwlug-disc at kwlug.org>
>> Subject: Re: [kwlug-disc] Linux Hacked For A Decade?
>>
>> I grabbed the full report(5Meg, 46-pg pdf) off their site using one of my
>> crud email addresses, so if anyone wants it, let me know and I will send
>> it to your email address of choice, good or crud:-)
>>
>> Thanks,
>>
>> Ron Singh
>>
>>
>>
>> On Wed, Apr 8, 2020 at 5:09 PM L.D. Paniak <ldpaniak at fourpisolutions.com>
>> wrote:
>>
>>> Since they want my contact info to read the report (
>>> https://www.blackberry.com/us/en/forms/enterprise/decade-of-the-rats),
>>> I would take any claims with a QNX of salt!
>>>
>>>
>>> On 4/8/20 4:53 PM, Khalid Baheyeldin wrote:
>>>
>>> Anyone saw this?
>>>
>>> Blackberry released a report about hacking tools targeting Linux for
>>> decades, by Chinese government linked hackers.
>>>
>>> The articles are devoid of technical detail ...
>>>
>>>
>>> https://www.forbes.com/sites/daveywinder/2020/04/07/linux-security-chinese-state-hackers-have-compromised-holy-grail-targets-since-2012/
>>>
>>>
>>> https://www.thestar.com/business/2020/04/07/blackberry-uncovers-china-backed-hacking-campaign-on-linux-servers.html
>>> --
>>> Khalid M. Baheyeldin
>>> 2bits.com, Inc.
>>> Fast Reliable Drupal
>>> Drupal performance optimization, hosting and consulting.
>>> "Sooner or later, this combustible mixture of ignorance and power is
>>> going to blow up in our faces." -- Dr. Carl Sagan
>>>
>>> _______________________________________________
>>> kwlug-disc mailing listkwlug-disc at kwlug.orghttps://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>>>
>>> _______________________________________________
>>> kwlug-disc mailing list
>>> kwlug-disc at kwlug.org
>>> https://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>>>
>> _______________________________________________
>> kwlug-disc mailing list
>> kwlug-disc at kwlug.org
>> https://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20200408/fb78b4f2/attachment.htm>
More information about the kwlug-disc
mailing list