The attack which has resulted in more than 25,000 Unix servers being hacked as on date, is used to send and display 5 million spam messages from the compromised machines.
This hack puts nearly half million computers at risk on daily basis.Victims who have Windows PCs get infected with click fraud malware and spam-sending malware similarly victims having Mac bases computers display mostly dating adverts.If you think your smartphone is safe from the attack you may end up being redirected to X-rated content.
Once the victim visits these sites, they are further made to download poisoned web content with Malwares, Adverts and Malicious exploit kits.The Operation Windigo uses sophisticated malware components including Linux/Ebury (an OpenSSH backdoor and credential stealer), Linux/Cdorked, Perl/Calfbot, Linux/Onimiki, Win32/Glubteba.M, and Win32/Boaxxe.G as per the ESET researcher team.In view of this serious threat, the researchers have appealed to all the UNIX system Administrators and webmasters to spin up the following command to see if their system is compromised or not.
$ ssh -G 2>&1 | grep -e illegal -e unknown > /dev/null && echo System clean || echo System infected
Should your system fallen prey to Operation Windigo, you should re-implement the operating system and change all the passwords and private OpenSSH keys.Readers are advised to keep their Antivirus and Adsblocker Software updated to stay safe from any such harmful operations.
Read More
source: www.techworm.net
