Cybersecurity

7020 readers

149 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago

MODERATORS

kid

[email protected]

New Linux malware is controlled through emojis sent from Discord (www.bleepingcomputer.com)

submitted 10 months ago by [email protected] to c/cybersecurity

13 comments fedilink hide all child comments

A newly discovered Linux malware dubbed 'DISGOMOJI' uses the novel approach of utilizing emojis to execute commands on infected devices in attacks on government agencies in India.

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 12 points 10 months ago (1 children)

Just like most malware

[–] sugar_in_your_tea 1 points 10 months ago (2 children)

Especially Linux malware. It's not a huge target, so it's likely to be low effort stuff like this instead of zero-days attacking some linux-specific API. That level of attack is reserved for higher value targets, like servers and windows.

[–] [email protected] 5 points 10 months ago (1 children)

It’s not a huge target

I never understood that claim. Most of the internet, most servers and most machine controllers, as well as most cloud services (including Microsoft Azure) run on Linux.
It's the biggest target in the world.

[–] sugar_in_your_tea 5 points 10 months ago

Linux servers are, and I specifically called that out. The types of attacks you use against a server are very different than attacks against a desktop. Most desktops don't run web servers, and most servers don't run discord or web browsers.

So linux desktops should see a lot fewer attacks than servers because the value of successfully attacking them is much lower. As that changes, so will the amount of malware targeting linux desktops.

[–] [email protected] 1 points 10 months ago (1 children)

Linux servers are the biggest target though.

[–] sugar_in_your_tea 1 points 10 months ago* (last edited 10 months ago)

Exactly, because they're high value targets, as I mentioned. But they're going to use more exotic exploits than an attack on linux desktops, because the expected return vs work to get the exploit makes more sense. Grandma isn't likely using linux to access her bank account, but she is likely accessing a linux server.