The Linux root kit targets 64-bit Linux platforms and uses advanced techniques to hide itself, and infects the websites hosted on attacked HTTP server working to launch drive-by download attacks.
“It's an outstanding sample, not only because it targets 64-bit Linux platforms and uses advanced techniques to hide itself, but primarily because of the unusual functionality of infecting the websites hosted on attacked HTTP server - and therefore working as a part of drive-by download scenario,” commented Marta Janus, a Kaspersky Lab Expert who examined the rootkit sample.
===> “This rootkit, though it's still in the development stage, shows a new approach to the drive-by download schema and we can certainly expect more such malware in the future.” <===
Read more:
http://www.securityweek.com/linux-rootkit-found-launching-iframe-injection-attacks
Check also:
- http://www.scoop.it/t/securite-pc-et-internet?tag=Linux-Vulnerabilities
- http://www.scoop.it/t/securite-pc-et-internet?tag=Nobody-is-perfect