Hunting Malware on Linux Production Servers: The Windigo Backstory

Operation Windigo is a large server, side malware campaign that targets Unix systems (BSD, Linux, etc.). There are three major components: Linux/Ebury an OpenSSH backdoor and credential stealer, Linux/Cdorked a Web Server backdoor (it works with Apache, Nginx and Lighttpd) that redirects end users to exploit kits, and Perl/Calfbot a spam sending daemon.

Provided by: SecurityTube.net Topic: Security Date Added: Oct 2014 Format: Webcast

Find By Topic