M'magulu angapo akuluakulu apakompyuta omwe ali m'malo apamwamba kwambiri ku UK, Germany, Switzerland ndi Spain, Zotsatira zakubera komanso kukhazikitsa pulogalamu yaumbanda pamigodi yobisika ya Monero (XMR) cryptocurrency. Kusanthula mwatsatanetsatane kwa zochitikazo sikunapezekebe, koma malinga ndi deta yoyambirira, machitidwewo adasokonezedwa chifukwa cha kuba kwa zidziwitso kuchokera ku machitidwe a ofufuza omwe anali ndi mwayi woyendetsa ntchito m'magulu (posachedwa, magulu ambiri amapereka mwayi wopita kumagulu ang'onoang'ono). Ofufuza a chipani chachitatu omwe amaphunzira za SARS-CoV-2 coronavirus ndikuchita machitidwe okhudzana ndi matenda a COVID-19). Atapeza mwayi wopita ku gulu limodzi mwa milanduyo, owukirawo adagwiritsa ntchito chiopsezocho. mu Linux kernel kuti mupeze mizu ndikuyika rootkit.
zochitika ziwiri zomwe zigawenga zidagwiritsa ntchito zidziwitso zomwe zidatengedwa kuchokera kwa ogwiritsa ntchito ku University of Krakow (Poland), Shanghai Transport University (China) ndi China Science Network. Maumboni adatengedwa kuchokera kwa omwe adachita nawo kafukufuku wapadziko lonse lapansi ndipo amagwiritsidwa ntchito kulumikizana ndi magulu kudzera pa SSH. Momwe zidziwitsozo zidalandidwira sizikudziwikabe, koma pamakina ena (osati onse) mwa omwe adakhudzidwa ndi mawu achinsinsi, mafayilo owonongeka a SSH adapezeka.
Zotsatira zake, owukirawo mwayi wopita ku gulu la UK (University of Edinburgh). , ili pa nambala 334 pamakompyuta apamwamba kwambiri a Top500. Kutsatira malowedwe ofanana anali mβmagulu a bwUniCluster 2.0 (Karlsruhe Institute of Technology, Germany), ForHLR II (Karlsruhe Institute of Technology, Germany), bwForCluster JUSTUS (Ulm University, Germany), bwForCluster BinAC (University of TΓΌbingen, Germany) ndi Hawk (University of Stuttgart, Germany).
Zambiri zokhudzana ndi zochitika zachitetezo chamagulu mu (CSCS), ( pamwamba 500), (Germany) ndi (, ΠΈ Malo mu Top500). Komanso, kuchokera kwa ogwira ntchito zambiri za kunyengerera kwa zomangamanga za High Performance Computing Center ku Barcelona (Spain) sizinatsimikizidwebe mwalamulo.
kusintha
, kuti mafayilo awiri oyipa omwe amatha kuchitidwa adatsitsidwa ku maseva owonongeka, pomwe mbendera ya suid idakhazikitsidwa: "/etc/fonts/.fonts" ndi "/etc/fonts/.low". Yoyamba ndi bootloader yoyendetsa malamulo a zipolopolo ndi mwayi wa mizu, ndipo chachiwiri ndi chotsuka logi chochotseratu zochitika zowononga. Njira zosiyanasiyana zakhala zikugwiritsidwa ntchito kubisa zinthu zoipa, kuphatikizapo kukhazikitsa rootkit. , yokwezedwa ngati gawo la Linux kernel. Nthawi ina, ntchito ya migodi inayambika usiku wokha, kuti asakopeke.
Akathyoledwa, wolandirayo atha kugwiritsidwa ntchito kuchita ntchito zosiyanasiyana, monga mining Monero (XMR), kuyendetsa projekiti (kulankhulana ndi magulu ena amigodi ndi seva yomwe ikuyendetsa migodi), kuyendetsa projekiti ya SOCKS yochokera ku microSOCKS (kuvomereza zakunja). maulumikizidwe kudzera pa SSH) ndi kutumiza kwa SSH (malo oyamba olowera pogwiritsa ntchito akaunti yosokoneza pomwe womasulira adilesi adasinthidwa kuti atumize ku netiweki yamkati). Polumikizana ndi makamu omwe ali pachiwopsezo, owukira amagwiritsa ntchito makamu okhala ndi ma proxies a SOCKS ndipo nthawi zambiri amalumikizidwa kudzera ku Tor kapena makina ena osokonekera.
Source: opennet.ru