New Linux Trojans installs crypto currency mining software on Raspberry Pi

Message boards : Number crunching : New Linux Trojans installs crypto currency mining software on Raspberry Pi
Message board moderation

To post messages, you must log in.

AuthorMessage
Profile Cliff Harding
Volunteer tester
Avatar

Send message
Joined: 18 Aug 99
Posts: 1310
Credit: 82,531,100
RAC: 31,255
United States
Message 1871919 - Posted: 9 Jun 2017, 12:26:09 UTC

Those of you that are running Raspberries might find this interesting. http://www.guru3d.com/news-story/new-linux-trojans-installs-crypto-currency-mining-software-on-raspberry-pi.html


I don't buy computers, I build them!!
ID: 1871919 · Report as offensive
Profile MarkJProject Donor
Volunteer tester
Avatar

Send message
Joined: 17 Feb 08
Posts: 1044
Credit: 50,380,623
RAC: 2,523
Australia
Message 1871948 - Posted: 9 Jun 2017, 13:55:34 UTC
Last modified: 9 Jun 2017, 14:01:55 UTC

You wouldn't think a Pi would produce much in the way of crypto currency. I have a bunch of Pi's and the first thing I do after imaging them is to change their password.

I did read one tutorial where the guy wanted to run it as a web server so he deleted the default user account. That sounds like a good idea now. For some reason though he didn't put a firewall on it.
BOINC blog
ID: 1871948 · Report as offensive
Profile ML1
Volunteer tester

Send message
Joined: 25 Nov 01
Posts: 9370
Credit: 7,037,214
RAC: 4,927
United Kingdom
Message 1871949 - Posted: 9 Jun 2017, 13:56:47 UTC - in response to Message 1871919.  

Those of you that are running Raspberries might find this interesting. http://www.guru3d.com/news-story/new-linux-trojans-installs-crypto-currency-mining-software-on-raspberry-pi.html

That's a good one and bound to happen...

Note the:

The malware scans for Raspberry Pi devices that are accessible through SSH port 22. When it has found a victim it tries to login using the default username and password.


Most RasPi boards should only be on internal networks hidden from the big bad internet behind a router... Those connected to the internet should have users that are more aware (hopefully) to change the password to something long and obscure.

However, the RasPi is now being used very widely in commercial "IoT" devices... Is this where we are now seeing the all-too-usual commercial rush and shoddiness being exploited by the malware idiots?


Happy cool crunchin',
Martin
See new freedom: Mageia Linux
Take a look for yourself: Linux Format
The Future is what We all make IT (GPLv3)
ID: 1871949 · Report as offensive

Message boards : Number crunching : New Linux Trojans installs crypto currency mining software on Raspberry Pi


 
©2017 University of California
 
SETI@home and Astropulse are funded by grants from the National Science Foundation, NASA, and donations from SETI@home volunteers. AstroPulse is funded in part by the NSF through grant AST-0307956.