1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

XOR: Linux-based botnet pushing 20 attacks a day

Discussion in 'CSO' started by RSS, Sep 29, 2015.

  1. RSS

    RSS New Member Member

    In a report released on Tuesday, Akamai has profiled several recent attacks from the XOR botnet, which is capable of DDoS attacks in excess of 150Gpbs. Researchers, after examining the more recent incidents, say that a vast majority of XOR's targets are organizations in Asia.

    Over the past year, explains Akamai's Stuart Scholly, the XOR botnet has grown and is now capable of being used to stage massive DDoS attacks.

    XOR is a Trojan that infects Linux systems. It's usually installed after an attacker brute forces SSH sessions, or after they've compromised the system by targeting a secondary attack surface, such as a vulnerable app or system operator. Once XOR is installed, the system is added to the botnet, where the botmaster will leverage it for on-demand attacks.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page