So, there is a Linux zombie network...
Jul. 11th, 2009 10:33 am![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
elfsAs it turns out, there is a Linux zombie network. It's called Psyb0t. It infects cable modems and home routers, which you never turn off, and gives whatever nefarious person running the network the capability to hack into your home network, monitor all traffic going through it, and exploit any passwords you send. Nefarious, stealthy, and evil. There's a reason I run a small, home-based, home-made router with my own monitoring software. A layer of security through defensive obsolescence.
Almost all home-based routers from Linksys and Netgear are based on an old distro of Linux with a weak password that makes it easy to hack. Sad, but true. Updates are available on Netgear and Linksys's websites, and the latest versions have patched the hole.
Here's what annoys me: every report I could find on Psyb0t mentions that it's a "Linux zombie network". Yet nobody calls MyDoom, the five year old virus that makes up the current denial-of-service attack, a "Windows zombie network". Why not?
Almost all home-based routers from Linksys and Netgear are based on an old distro of Linux with a weak password that makes it easy to hack. Sad, but true. Updates are available on Netgear and Linksys's websites, and the latest versions have patched the hole.
Here's what annoys me: every report I could find on Psyb0t mentions that it's a "Linux zombie network". Yet nobody calls MyDoom, the five year old virus that makes up the current denial-of-service attack, a "Windows zombie network". Why not?
![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
no subject
Date: 2009-07-11 06:03 pm (UTC)no subject
Date: 2009-07-11 06:18 pm (UTC)no subject
Date: 2009-07-11 06:28 pm (UTC)no subject
Date: 2009-07-11 10:59 pm (UTC)Also it's not really a "Linux" zombie network, it's a "little-endian MIPS processor running Linux" zombie network. It's more a hardware exploit than an operating system one, relying on the architecture of the MIPS chip to allow the attack on the OS. So it really_only_ infects routers, and other commodity electronics that use MIPS chips, your Intel, PowerPC, or AMD server running Linux cannot be affected by this exploit.
no subject
Date: 2009-07-14 09:06 am (UTC)Wow, Microsoft does place a high priority on retaining compatibility with old software in new versions of Windows. :-)