Operation Windigo: Linux malware campaign that infected 500,000 Computers Worldwide
Mar 18, 2014
In late 2013, Security Researchers identified thousands of Linux systems around the world infected with the OpenSSH b ackdoor trojan and credential stealer named Linux/Ebury , that allows unauthorized access of an affected computer to the remote attackers. Antivirus Firm ESET's Reseacher team has been tracking and investigating the operation behind Linux/Ebury and today team uncovers the details [ Report PDF ] of a massive, sophisticated and organized malware campaign called ' Operation Windigo ', infected more than 500,000 computers and 25,000 dedicated servers. ' We discovered an infrastructure used for malicious activities that is all hosted on compromised servers. We were also able to find a link between different malware components such as Linux/Cdorked, Perl/Calfbot and Win32/Glupteba.M and realized they are all operated by the same group. ' ESET reported. Malware used in Operation Windigo: Linu...
