Category: Malware

Linux will never have a Virus, Some say!

Paul2 Replies

I got an Interesting Comment yesterday:

Wouldn’t you bet that this topic is very popular with the linux community at a whole but that isn’t what makes it interesting.   I got a comment that I must talk about in parts.

It’s not a question of whether Linux will get viruses. There are already a number of worms and other malware that have struck Linux services. As for a virus or other malware attacks against Linux as a whole, it can’t happen the way it can for Windows and Mac OS X. It’s a question of homogeneity vs. heterogeneity. Windows and Mac OS X have two flavors, 32bit and 64bit essentially [this is an over-generalization, but it’s generally true]. Linux is so balkanized, that it’s difficult to think a virus could be written that could affect every distro out there, since none of them run the same versions of various system software [like services, filesystems, etc.], so it’s not likely that the same type of flaw will exist everywhere. Also, with distributions like Debian so many architectures are supported, and it’s difficult to imagine some virus author to put in the effort to make the virus able to infect so many disparate systems. The law of diminishing returns applies here.

This argument is something that is near and dear to my heart for several reasons.    Having seen Apple getting hit by a virus and malware, who thought they were educated also never once thought about getting a virus.   Now lets face it this isn’t like a major system to some but there are more and more of linux users out there because of the fact this is a free system and many people would argue that they can’t afford to buy a new version of Windows every 2 or 4 years and some of us will not buy Apple due the Apple tax.   So there we have it, more and more people are turning to Linux because of this worldly recession and that means more and more people are using Linux and the eyes of the malware writers will start to find holes and other ways to infect users.

Just because it is unlikely doesn’t mean it won’t happen!

We have seen in the past that there are Unix viruses and that was never really popularized as Apple having a Virus.   Now just because the Linux community is fragmented into many different flavors doesn’t mean they don’t have something in common to all of them.   The Kernel alone has to have something in common with all flavors to be considered viable.  That in such means that the flaw that you suggest could and probably does exist everywhere.    When someone says law of diminishing returns applies here, I have to imagine that you do not know that with any web surfing instance, I can easily find out which Linux you might be using and thus create a script for it.     Which in my Mind that sounds oddly like your using the old argument of Security through obscurity and we already saw how Apple got hit by a virus because they thought this same thought for several years.

Segmentation is everything to Malware:

So I agree, it’s possible that viruses for Linux will be in the wild sooner than later, but they will target specific distros/architectures [like Debian, Red Hat, SuSE, and derivatives, or even Android, and all the architectures supported by them]. Also, this means that the target markets for Linux viruses will be segmented and segregated, and thus much less profitable than markets as huge and contiguous as Windows or even Mac OS X. Until there’s no more low hanging fruit like this, virus writers won’t have the economic incentive to target Linux in general, except maybe to prove it can be done. But then again, the returns won’t ever be as spectacular as they can be on relatively homogeneous systems like Windows and Mac OS X. Thus it will always be possible to write Linux viruses, but not nearly as probable as with other commercial operating systems.

Segmented Linux distributions makes it just that more probable of getting a virus.   Most writers will love to have segmentation and they have used it in the past.  The Market segmentation would make it just that much harder for any one Linux Distro to remove the virus.    If you have several different flavors of Linux, you would have to remove the virus or malware a certain way with each and every version of the flavor.    Not everything is about economics, most of the writers have in the past did not want to segment because of the need to infect for ransomware, thus creating a way for income.   With the development of Antivirus Companies for Windows, they have alternatively changed tactics.   One of there new tactics is to spread to as many systems and use those system to send out spam, to redirect, infect other systems, and also pop up advertisements.    This is why they would love Linux because of the fact that there are so many segregated communities that it would be much harder for a system to be cleaned and thus the user would have no other option but to re-install Linux or live with the problem.   I for one have fought off viruses in the past with my clients so I know that some customers do not know anything about virus removal and thus will live with the virus until someone comes to fix the problem.   That is why I believe the Linux community as a whole should start developing a Virus database and work at stopping the problem before it starts.

What do you think?  I’d love to hear your comments?  Feel free to leave your comments at tell me your thoughts!

Only Time Will Tell!

Paul Sylvester

 

Related articles

Does Linux need an Anti-Virus?

Paul6 Replies

Anti-virus Programs and Linus Torvalds

Hey let’s face it with the recent virus problems Machnitoshes has had, we’ve got a bit of problem on our hands.   I’ve come to the realization that there must be a way to protect my Linux operating system much better.   Although there are several different programs out there that can be used with Linux.  I however wanted to talk about the necessity of having a program installed and running to better protect me from doing something bad.   Hey I admit it, I occasionally click on links when I shouldn’t and also occasionally like to see what is in my spam folder just to make sure I am not missing something that I should.

Is Anti-virus Really needed for Linux?

There have been advocates for Anti-virus programs for the Linux community over the past few years.   I have been one of those myself.

 

Any antivirus/spyware needed?

 

I have been an advocate of “Linux” “doing” “enabling” antivirus/spyware for over 6 years now….it WILL hit “us” sooner or later….but given the money involved I think…..MUCH later….so….no, for now, do not worry about it at all.

If you get “something” that says it is “checking your computer” it is because WINE has automatically been enabled and the malware is seeing that and NOT Kubuntu….so….ummmm….close the browser….re-open and get on with your malware free life.

Via Kunbuntuforums.net

Now I tell you,  What is wrong with this picture?   Are the Linux users acting a little like Apple users, and thinking they can’t get a virus.   I won’t say that right now there are any viruses in the wild but I would caution everyone not to consider your system invulnerable even though there aren’t as many reports of virus out in the wild.   It will hit us next if not this year probably in a year or two.

Linux is Next for sure!

I don’t say that lightly, I am sure in the coming years to even months that the malware writers and virus writers will be looking at Linux more and more.   With Apple just being hit and finally admitting that they have been hit with a virus, you can bet that some of the Apple users will convert to Linux just because they were using Apple’s believe that they were immune to viruses and malware.   They will come and when that comes the eyes of the world will be on Linux users.   It will be our job to get ready for these nefarious users and fight them off.   So I call to the community to get ready for this to happen.   I know it is coming almost as much as I know I am going to keep blogging.   Only time will prove me right, but I know it is going to happen and if your not ready then you can only blame yourself.

Stay Safe

Paul Sylvester

Related articles

Apple Needs to Worry about Security and Virus!

Paul2 Replies

Let’s Face It, Mac isn’t Virus Free no more!

I know I’ve been saying this for a few years, but In all truthfulness it is more of a fact than a few years ago.   Apple needs to change their policy on how they do commercials.   I don’t say that light hearted because I actually think the commercials are really funny sometimes but that is besides the point.  They have not in the past changed their tactics because of the new malware that is going about.   Some experts are saying this malware doesn’t require you to enter a password or even have you allow or deny the installation.  Although, I have no Apple computer to test this observation, it seems quite possible depending on how people have their system setup.   Thought most Mac users are not thinking about security or even the possibility of a virus because of the advertisements that Apple has put up in the past.   More and more their seems to be a growing number of viruses and malware for the Macintosh.

Security Through Obscurity is No More with Apple!

I say that know that in the past most Apple users always thought since the Operating system of the Apple was not well known that they could get away with installing unknown software or programs that Windows users would think twice on.   I honestly don’t see how people would download bit torrent files thinking that they were safe on the Mac because “Apple Could never get a Virus” advertising has stuck in their minds.   Yet Apple has in the past fought this through new changes to their advertising but the fact remains anytime you think of a Macintosh, you first thought would be about it being Virus.   I know some of you probably though the first thought would be the speed and ease of the Operating, and although that is true that isn’t my thought when I think of a Apple Operating System.

Don’t Presume anything!

I might not be a Mac User but I don’t presume anything when it comes to running a Windows or even a Linux Operating System.   That Being said when Apple finally realizes that they are no longer able to hide from the bad guys, then we will see them start fighting back.   Until then though, most Mac Users will make the mistakes they have always done because of Apple stance and the ignorance of the problem.  I have said how hackers will start targeting Apple Users and this seems to be the case even now.   If you have a Mac Machine, I suggest looking for a good Antivirus and sticking with them.   You are not longer safe not having an Antivirus software installed on your system.

Stay Safe!

Paul Sylvester

Related articles

Scareware List for July 31, 2009

Paul

Antivirussystempro1

Looks like they went out and made a quite a few domains lately so Here they are:

  • antivirus-live-pro.org ([intlink id=”1837″ type=”post”]Antivirus Pro Scareware[/intlink])

  • internetantivirusplus.com (Fake Antivirus)

  • mybestantivirusplus.com

  • securesoftwarebill.com (Rogue System Security Antivirus)

  • yourantimalware.com

  • totalsurfguard.com

  • systemsecuritysupport.com

  • stabilitysuite.com

  • powersystemstability.com

  • onlinecentersupport.net

  • identitysecuritysuite.com

  • etotalsecurity.com

  • defenseinteractive.com

  • defenseinteractive.com

  • antispyinteractive.com

  • antispyavailable.com

  • protectionsystem.org(Like [intlink id=”1837″ type=”post”]Antivirus Pro Scareware[/intlink])

  • realbestantivirusplus.com

Remember these sites are active and are scaring people into buying or installing there product, you should not go to these sites. As you can see the Scareware Writers and domains have been busy this week and have made these to use in this weekend I can bet on that.   These sites are trying to [intlink id=”3607″ type=”post”]scare you into buying there product or installing there fake antivirus software[/intlink].    If you are constantly inundated with pop up windows warning you have a virus or trojan and showing you a load of viruses or trojans on your screen. They will probably ask you to install software or buy the product that would be a big waste of time and could possibly install even more malware and also could loose money. You should never download any software from sites you don’t know or buy from sites that you’ve never heard from.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]

Some more Malware Sites July 29, 2009

Paul

mailware-live-pro-scanv1-1

I’ve done my usual looking around and found some Rogue Antivirus sites that I call scareware:

  • tb2car.com

  • rundaqimao.com

  • shuncheng2car.com

  • dakbesy.cn

  • befynru.cn

  • scanworldwideweb.com

All these sites are scaring users into installing software that does nothing but bothers the users into registering this software. You should not visit these sites are active right now and are spreading the malware and getting people to install malware. If you have installed this scareware software, I would recommend removing with really Antimalware software and not pay for these fake products.

Threat to System : Moderate

[rating:4/5]

Advice : Do a Complete system scan and make sure you don’t have any more hidden malware.

I recommend :

[ad#SUPERAntiSpyware]