Brdsnest Lemmy
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
0nekoneko7@lemmy.world to Linux@lemmy.mlEnglish · 1 year ago

Kaspersky releases free tool that scans Linux for known threats

www.bleepingcomputer.com

external-link
message-square
102
fedilink
41
external-link

Kaspersky releases free tool that scans Linux for known threats

www.bleepingcomputer.com

0nekoneko7@lemmy.world to Linux@lemmy.mlEnglish · 1 year ago
message-square
102
fedilink
Kaspersky has released a new virus removal tool named KVRT for the Linux platform, allowing users to scan their systems and remove malware and other known threats for free.
  • boredsquirrel@slrpnk.net
    link
    fedilink
    arrow-up
    23
    arrow-down
    4
    ·
    1 year ago

    I HIGHLY doubt that they would detect the XZ backdoor

    • 6️⃣9️⃣4️⃣2️⃣0️⃣@lemmy.world
      link
      fedilink
      English
      arrow-up
      34
      ·
      1 year ago
      xz --version
      
      • boredsquirrel@slrpnk.net
        link
        fedilink
        arrow-up
        22
        ·
        1 year ago

        • far_university1990@feddit.de
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          Böhmermann in freier Wildbahn gesichtet

          • boredsquirrel@slrpnk.net
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            War auch überrascht

    • Possibly linux@lemmy.zip
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      1 year ago

      Even if it did, what would you do? rm -rf /?

      XZ is part of the core system

    • atzanteol@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      1
      ·
      1 year ago

      Why? It’s not hard. They typically hash files and look for hits against a database of known vulnerabilities.

      • boredsquirrel@slrpnk.net
        link
        fedilink
        arrow-up
        7
        ·
        1 year ago

        Yes and if viruses use something like base64 encoding or other methods, the hashes dont match anymore.

        As far as I understood it, it is pretty easy to make your virus permanently un-hashable by just always changing some bits

        • atzanteol@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          The xz backdoor was a packaged file distributed with the standard packages though. It would be trivial to find.

          • boredsquirrel@slrpnk.net
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            This is obviously not about this known file.

            It is about “would this scanner detect a system package from the official repos opening an ssh connection”

            • atzanteol@sh.itjust.works
              link
              fedilink
              English
              arrow-up
              1
              ·
              1 year ago

              Sorry, I was responding to:

              I HIGHLY doubt that they would detect the XZ backdoor

      • Possibly linux@lemmy.zip
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        1 year ago

        That doesn’t work against polymorphic malware

        I think the best way is to monitor calls and behavior. Doing that is a privacy nightmare

        • atzanteol@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          Who’s talking about polymorphic malware? We were talking about the xz backdoor.

          • Possibly linux@lemmy.zip
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            Oh well in that case there is no chance

Linux@lemmy.ml

linux@lemmy.ml

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !linux@lemmy.ml

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

  • Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
  • No misinformation
  • No NSFW content
  • No hate speech, bigotry, etc

Related Communities

  • !opensource@lemmy.ml
  • !libre_culture@lemmy.ml
  • !technology@lemmy.ml
  • !libre_hardware@lemmy.ml

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 407 users / day
  • 3.04K users / week
  • 6.06K users / month
  • 16.8K users / 6 months
  • 1 local subscriber
  • 59.2K subscribers
  • 8.55K Posts
  • 223K Comments
  • Modlog
  • mods:
  • AgreeableLandscape@lemmy.ml
  • nooter692@lemmy.ml
  • MarcellusDrum@lemmy.ml
  • Arthur Besse@lemmy.ml
  • Cyclohexane@lemmy.ml
  • d3Xt3r@lemmy.nz
  • BE: 0.19.5
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org