Mune akati wandei makuru emakomputa masumbu ari munzvimbo dzepamusoro-soro muUK, Germany, Switzerland neSpain, mitsva yekubira zvivakwa uye kuisirwa malware kune yakavanzika migodhi yeMonero (XMR) cryptocurrency. Ongororo yakadzama yezviitiko haisati yavepo, asi maererano nedata rekutanga, masisitimu akakanganiswa nekuda kwekubiwa kwezvitupa kubva kune masisitimu evatsvaguri vaive nemukana wekuita mabasa mumasumbu (munguva pfupi yapfuura, masumbu mazhinji anopa mukana kune vechitatu-bato vaongorori vanodzidza iyo SARS-CoV-2 coronavirus uye kuita maitiro ekuenzanisira ane chekuita neCCIDID-19 utachiona). Mushure mekuwana mukana kune sumbu mune imwe yenyaya, vapambi vakashandisa kusazvibata. muLinux kernel kuti uwane midzi yekuwana uye kuisa rootkit.
zviitiko zviviri umo varwisi vakashandisa zvinyorwa zvakatorwa kubva kune vashandisi kubva kuYunivhesiti yeKrakow (Poland), Shanghai Transport University (China) uye Chinese Scientific Network. Zvinyorwa zvakatorwa kubva kune vatori vechikamu muzvirongwa zvekutsvagisa zvepasi rose uye zvakashandiswa kubatanidza kumasumbu kuburikidza neSSH. Izvo chaizvo izvo zvitupa zvakatorwa hazvisati zvanyatsojeka, asi pane mamwe masisitimu (kwete ese) evakabatwa nepassword leak, spoofed SSH executable mafaera akaonekwa.
Somugumisiro, vanorwisa kuwana kuUK-based (University of Edinburgh) cluster , iri pachinzvimbo che334 muPamusoro500 makuru makuru makuru. Kutevera kupinda kwakafanana kwaive muzvikwata bwUniCluster 2.0 (Karlsruhe Institute of Technology, Germany), ForHLR II (Karlsruhe Institute of Technology, Germany), bwForCluster JUSTUS (Ulm University, Germany), bwForCluster BinAC (University of TΓΌbingen, Germany) uye Hawk (University of Stuttgart, Jerimani).
Ruzivo nezve cluster kuchengetedza zviitiko mu (CSCS), ( pamusoro pe500), (Germany) uye (, ΠΈ nzvimbo dziri muTop500). Mukuwedzera, kubva kune vashandi ruzivo nezve kukanganiswa kwezvivakwa zveHigh Performance Computing Center muBarcelona (Spain) haisati yasimbiswa zviri pamutemo.
shanduko
, kuti mafaera maviri ane hutsinye anogona kuchinjika akadhaunirodwa kumaseva akakanganiswa, iyo iyo suid mudzi mureza wakagadzirirwa: "/etc/fonts/.fonts" uye "/etc/fonts/.low". Yekutanga ibhuotloader yekumhanyisa magomba mirairo ine midzi ropafadzo, uye yechipiri igi yekuchenesa yekubvisa zvisaririra zveanorwisa chiitiko. Nzira dzakasiyana-siyana dzakashandiswa kuvanza zvinhu zvakashata, kusanganisira kuisa rootkit. , yakarongedzerwa semodule yeLinux kernel. Mune imwe nguva, nzira yekuchera migodhi yakatangwa chete usiku, kuitira kuti irege kukwezva kutarisa.
Kana yangobiwa, muenzi anogona kushandiswa kuita mabasa akasiyana siyana, akadai sekuchera Monero (XMR), achimhanyisa proxy (kutaurirana nemamwe mauto emigodhi uye sevha inoronga migodhi), ichimhanyisa microSOCKS-based SOCKS proxy (kugamuchira ekunze. kubatanidza kuburikidza neSSH) uye SSH kutumira (iyo yekutanga nzvimbo yekupinda uchishandisa yakakanganiswa account iyo muturikiri wekero akagadziridzwa kuti atumire kune yemukati network). Kana vachibatanidza kune vakakanganiswa mauto, vapambi vakashandisa mauto ane SOCKS proxies uye kazhinji akabatana kuburikidza neTor kana mamwe masisitimu akakanganisika.
Source: opennet.ru