A new worm has been discovered by researchers at Juniper Threat Labs that targets Linux-based x86 servers, in addition to Linux ARM and MIPS-based IoT devices. It is believed that the malware, dubbed Gitpaste-12, could potentially be deployed against additional targets in the future, as its test code suggests the malware is still in development.
The threat uses GitHub and Pastebin to house component code and uses at least 12 attack modules to compromise target devices. Juniper has reported both the Pastebin URL and GitHub repository that was initially used by the worm, resulting in both being shut down.
The Gitpaste-12 exploit operates by first using known exploits or brute forcing passwords to gain entry into a system. It then uses a cron software utility to schedule updates to the…
Source link
