Lemmy
  • Communities
  • Create Post
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
cm0002@lemmy.world to Linux@programming.dev · 28 days ago

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

thehackernews.com

external-link
message-square
7
fedilink
  • cross-posted to:
  • linux@lemmy.ml
47
external-link

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

thehackernews.com

cm0002@lemmy.world to Linux@programming.dev · 28 days ago
message-square
7
fedilink
  • cross-posted to:
  • linux@lemmy.ml
Malicious Go and PyPI packages use Gmail and wget to exfiltrate data, wipe Linux disks, and hijack crypto credentials.

Packages:

  • github.com/truthfulpharm/prototransform
  • github.com/blankloggia/go-mcp
  • github.com/steelpoor/tlsproxy
alert-triangle
You must log in or register to comment.
  • pelya@lemmy.world
    link
    fedilink
    arrow-up
    4
    ·
    28 days ago

    Ain’t no way mah C++ modules deliver any of them malware.

    because

    C++ got no fancy-shmancy modules, got ya!

    • simonmicro@programming.dev
      link
      fedilink
      arrow-up
      5
      ·
      28 days ago

      Incorrect. 20 doesssss

      • pelya@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        27 days ago

  • Onno (VK6FLAB)@lemmy.radio
    link
    fedilink
    arrow-up
    4
    ·
    28 days ago

    There’s a reason why there’s only privileged write access to /dev/sda.

    If you run unknown software as root on any computer you get to experience first hand the impact of: “fuck around and find out”.

    • andybytes@programming.dev
      link
      fedilink
      English
      arrow-up
      1
      ·
      5 days ago

      Uh oh

    • Dumhuvud@programming.dev
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      27 days ago

      I mean, you can destroy users’ data by doing the equivalent of:

      find "$HOME" -type f -delete
      

      No idea why they decided to write to /dev/* directly.

      • ulterno@programming.dev
        link
        fedilink
        English
        arrow-up
        1
        ·
        25 days ago

        Can’t delete a drive that I haven’t mounted! :catch_me_if_you_can_vibes:

        But if I haven’t mounted it, why is it connected in the first place? idk

Linux@programming.dev

linux@programming.dev

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !linux@programming.dev

A community for everything relating to the GNU/Linux operating system

Also check out:

  • !linux_memes@programming.dev
  • !linuxphones@lemmy.ca

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 328 users / day
  • 1.19K users / week
  • 3.06K users / month
  • 7.64K users / 6 months
  • 1 local subscriber
  • 7.49K subscribers
  • 951 Posts
  • 5.86K Comments
  • Modlog
  • mods:
  • Ategon@programming.dev
  • adr1an@programming.dev
  • dwraf_of_ignorance@programming.dev
  • BE: 0.19.8
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org