Lihlopheng tse 'maloa tse kholo tsa komporo tse fumanehang litsing tsa supercomputing UK, Jeremane, Switzerland le Spain, mesaletsa ea ho qhekella ha meaho le ho kenya malware bakeng sa meepo e patiloeng ea chelete ea crypto ea Monero (XMR). Tlhahlobo e qaqileng ea liketsahalo ha e e-s'o fumanehe, empa ho ea ka lintlha tsa pele, litsamaiso li ne li sekiselitsoe ka lebaka la bosholu ba litokomane tse tsoang lits'ebetsong tsa bafuputsi ba neng ba e-na le monyetla oa ho etsa mesebetsi ka lihlopha (haufinyane tjena, lihlopha tse ngata li fana ka phihlelo ea Bafuputsi ba mokha oa boraro ba ithutang coronavirus ea SARS-CoV-2 le ho etsa mohlala oa tšebetso o amanang le ts'oaetso ea COVID-19). Kamora ho fumana phihlello ea sehlopha ho e 'ngoe ea linyeoe, bahlaseli ba ile ba sebelisa monyetla oa ho ba kotsing. ho Linux kernel ho fumana metso le ho kenya rootkit.
liketsahalo tse peli tseo ho tsona bahlaseli ba ileng ba sebelisa mangolo a bopaki a nkiloeng ho basebelisi ba tsoang Univesithing ea Krakow (Poland), Shanghai Transport University (Chaena) le China Scientific Network. Lintlha li ile tsa nkuoa ho tsoa ho barupeluoa mananeong a machaba a lipatlisiso 'me tsa sebelisoa ho hokela lihlopha ka SSH. Ha e le hantle hore na mangolo a netefalitsoe joang ha a e-so hlake, empa lits'ebetsong tse ling (eseng kaofela) tsa bahlaseluoa ba ho lutla ha phasewete, lifaele tse ka sebetsoang tsa SSH li ile tsa fumanoa.
Ka lebaka leo, bahlaseli phihlello ho sehlopha sa UK-based (Univesithi ea Edinburgh). , e behiloe boemong ba 334 ho li-supercomputer tse kholo ka ho fetisisa tse 500. Latelang ho kenella ka tsela e tšoanang e ne e ka lihlopha bwUniCluster 2.0 (Karlsruhe Institute of Technology, Germany), ForHLR II (Karlsruhe Institute of Technology, Germany), bwForCluster JUSTUS (Ulm University, Germany), bwForCluster BinAC (University of Tübingen, Germany) le Hawk (University of Stuttgart, Jeremane).
Tlhahisoleseding e mabapi le diketsahalo tsa tshireletso ya cluster ho (CSCS), ( ka holimo ho 500), (Jeremane) le (, и libaka tse ka holimo ho 500). Ho phaella moo, ho tloha ho basebetsi tlhahisoleseding e mabapi le ho sekisetsa meaho ea Setsi sa High Performance Computing se Barcelona (Spain) ha e e-s'o tiisetsoe ka molao.
liphetoho
, hore lifaele tse peli tse ka phethehang tse lonya li kopitsoe ho li-server tse senyehileng, tseo folakha ea motso oa suid e neng e behiloe: "/etc/fonts/.fonts" le "/etc/fonts/.low". Ea pele ke bootloader ea ho tsamaisa litaelo tsa likhetla tse nang le litokelo tsa metso, 'me ea bobeli ke sehloekisi sa log bakeng sa ho tlosa mesaletsa ea liketso tsa bahlaseli. Mekhoa e fapaneng e sebelisitsoe ho pata likarolo tse mpe, ho kenyelletsa ho kenya rootkit. , e laetsoe joalo ka mojule oa kernel ea Linux. Ketsahalong e 'ngoe, ts'ebetso ea merafo e qalile bosiu feela, e le hore e se ke ea khahla tlhokomelo.
Hang ha e hapiloe, moamoheli a ka sebelisoa ho etsa mesebetsi e fapaneng, joalo ka mining Monero (XMR), e tsamaisang moemeli (ho buisana le mabotho a mang a merafo le seva e hokahanyang merafo), e tsamaisang proxy e thehiloeng ho SOCKS e thehiloeng ho microSOCKS (ho amohela kantle ho naha). likhokahano ka SSH) le ho fetisa SSH (ntlha ea mantlha ea ho kenella ka ho sebelisa ak'haonte e senyehileng eo mofetoleli oa aterese a lokiselitsoeng ho fetisetsa marang-rang a kahare). Ha ba hokahana le mabotho a senyehileng, bahlaseli ba ne ba sebelisa mabotho a nang le li-proxies tsa SOCKS 'me hangata ba hokahana ka Tor kapa lits'ebetso tse ling tse senyehileng.
Source: opennet.ru