[mdlug] eBay phishing Linux-driven?
Rich Clark <rrclark@rrclark.net>
rrclark at rrclark.net
Tue Oct 9 05:57:13 EDT 2007
On Thu, 4 Oct 2007, Michael Rudas wrote:
> Via Jim Fick on the GLLUG list at Michigan State University
> <linux-user at egr.msu.edu>:
>
> "eBay phishers use Linux botnets"
> <http://www.techworld.com/security/news/index.cfm?RSS&NewsID=10251>
>
> This article smells more-than-a-little like FUD to me, especially
> having been presented at a Microsoft-sponsored meeting-- correct me
> (please) if I'm wrong, but don't most (if not all) Linux rootkits
> require local access for this kind of privilege escalation? Or, at
> the very least, massive near-deliberate misconfiguration? Is it
> possible that these are Windows machines masquerading as Linux boxen?
Consider the source and pretty much give it the same weight as anything
else the monster in Redmond utters.
> The number of botnet-infected Windows machines HAVE to vastly
> outnumber the number of Linux/Unix/BSD machines so infected-- why
> would infected Linux machines command a premium?
Rooted Linux boxes are actually more rare but more powerful, so naturally,
pricing obeys basic laws of supply and demand.
More information about the mdlug
mailing list