New Linux malware is controlled through emojis sent from Discord
New Linux malware is controlled through emojis sent from Discord
www.bleepingcomputer.com
New Linux malware is controlled through emojis sent from Discord
21 comments
-
Tl;Dr new Linux malware specific to a flavor used by the Indian government uses emojis as a c2 comms path
-
The joke's on you, malware devs! I never use Discord, and never did on my Linux machines.
-
I would assume this just relies on the Discord API being read by the bot - and not on having a local discord installed...
-
Asking as someone who is absolutely not tech proficient compared to most lemmy users: is this a vulnerability with Linux or Discord specifically, or is this something that could be carried out on any OS/messenger if the computer was infected?
-
From the article, it sounds as though this isn't something a normal user should be worried about. They said the security researched believe it targets a Linux distribution used by the Indian government, and the phishing/malicious links seem intended to target Indian officials.
-
According to Volexity, the malware was discovered after the researchers spotted a UPX-packed ELF executable in a ZIP archive, likely distributed through phishing emails. Volexity believes that the malware targets a custom Linux distribution named BOSS that Indian government agencies use as their desktop.
I use Arch, btw. /s
-
-
It looks like there isn’t a vulnerability at all. Just a malware executable disguised as a pdf in a zip file that uses discord as a communication method
-
-
Interesting, thanks!
21 comments