25000 Co-opted Linux Servers Drop Malware, Spread Spam and Steal Credentials

Recently a new report has been released by the security company ESET, Operation Windigo – The vivisection of a large Linux server-side credential stealing malware campaign. This research report was a joint effort by ESET, CERT-Bund, SNIC and CERN.

Over past some years, ESET has recorded around 25,000 malware-infectedservers, which have been significant in various functions like:

• Spam Operations (averaging 35 million spam messages each and every day )
• Infecting site visitor’s computer via drive-by exploits.
• Redirecting the visitors to malicious websites.

The report says about two well-known organisations becoming the victims of Windigo. This ongoing operation was started in 2011, and has affected some high profile servers and companies like cPanel and Linux Foundation’s Kernel.org.

Easier with Single Factor Logins: 

There was a common thread that the Linux servers consisted of, and all were infected with Linux/Ebury. The Linux/Ebury is a malware that provides a root backdoor shell along with an ability to steal SSH credentials. The report also mentioned that there are no vulnerabilities on the Linux servers, which could be exploited, but only stolen credentials were leveraged. Thus in a sense helps explain the compromise made, as Linux servers are, for the most part, bulletproof.

Getting access to the credentials etc: 

The question arose in the minds of the Linux users was that, how the attackers got access the credentials, login and ultimately installing the malware.

A helping hand is offered by Pierre Marc Bureau,a security intelligence bureau named after the program manager of ESET Pierre Marc. They provided the Linux users with the answers that says that it takes to compromise one server in a network, whichmakes it easier there forth. Once the root is obtained by the attackers, they install Linux/Ebury on the compromised server and start to harvest the SSH-login credentials. Along with the additional login credentials, the attackers explore to see what the other servers can be compromised in that particular network.

Additional Malware: 

As mentioned above in this article, the infected servers are part of spam campaigns, they redirect the visitors to the malicious websites, or in case of vulnerable computers, it downloads malwares to the victim’s computer. In order to successfully accomplish this, the attackers install some additional malwares on the servers consisting of:

• Linux/Cdorked: it provides a backdoor shell and are able to distribute Windows malware to end users via drive-by downloads.
• Linux/Onimiki: it resolves the domain names with a particular pattern to any IP address, without any need to change further any server-side configuration.
• Perl/Calfbot: it is a lightweight spam bot written in Perl.

Victims: 

The Windigo Report further adds that there are two types of victims, the Linux/Unix server operators and End-users who receive spam and or visit a website on a compromised server. In that respect, ESET has confirmed that the compromised servers try to download the following Windows Malware:

• Win32/Boaxxe.G: A click fraud malware.
• Win32/Glubtela.M: A general proxy that targets Windows computers.

Facebook Rolls Out Bandwidth Targeting

Facebook has launched "bandwidth targeting” as an advertising campaign. Most of the Facebook users use their mobile devices to access Facebook. This ad tech has been created to advertise the products and reach people in accordance with the type of connection and data plan they have. Facebook has more than 1.32 billion users all around the globe.

Facebook offers advertising campaigns to promote some organizations. But a couple of days back they updated their system and launched the new ad tech strategy. This new ad tech helps the organizations to provide the people the advertisements they would like to know about. This ad tech simplifies matters and sends the advertisements based on the type of mobile device and the operating system they employ.

How does this launch work? 

This ad tech provides the opportunity to the advertisers to publicize the advertisements according to the user's connection of network, data plan and speed. The advertisements are based on whether the user, uses a 2G, 3G, 4G or a more powerful connection. In this way, the mundane advertisements can be avoided. Only those advertising campaigns will be sent which are compatible with the mobile device's data plan and speed.

For instance, there is no utility of sending a video to those employing 2G connection, for there is no utility if they are unable to load the video or even if they buffer for several minutes. So for those with 2G connection, it would be best to send them an image with the link. While videos can be used for campaigning and be sent to those using 3G or higher connections. People look forward to and expect a fast service from their mobile data.

This method of targeting mobile network is very beneficial as they aid the advertisers to provide the right kind of experience, even within restricted and limited device data expenses and bandwidth. The Ad Create tool, the API and the Power Editor are some parts of Facebook, which are helping to promote this new ad tech.

The Utility of the Facebook Advertising Campaign

Statistics revealed, that in June, 2014, around 30 million small and medium scale businesses employed the use of Facebook to promote their organization. In order to connect with their customers they have their pages on Facebook to stretch their customer circle wider and reach out to more people. This ad tech will definitely be able to provide with more localized campaigns.

Impact of this launch on India

There are approximately around nine lakh small and medium businesses (SMB), who uses Facebook as a promotional platform. India is the second largest user base on the basis of marketing. India is one of the emerging countries, where most of the Facebook users are under restricted and limited data connection and feature mobile devices.

Thus, advertising can be done accordingly. This can reach the people according to the device the person uses, whether it is a Smartphone or feature phones or tablets. Some companies have already started to test the result of this new strategy like Vodafone in India and they are pleased with the result.

Google to add manual controls and steering wheel in driverless car

So looks like even the software giant have to bend to certain rules. They are being forced to add manual controls which includes steering and pedals, the before starting the test run on the road. This rule has been slapped to avoid any road mishap in case their software failure in the vehicle. However good this car may be but it lacks manual human controls. California's Department of Motor Vehicles doesn’t look to be too impressed with the idea of a car which has only start and stop button operable by humans. The road testing has been banned for this car of Google unless these rules get implemented.

What was the concept behind this car? 

The main idea behind developing this car was to put an person at ease as they don’t have to do anything apart from pressing the start button. But the California DMV states that the driver also should be able to drive the car.

The lead software engineer, Dmitri Dolgov stated that the technology was not 100% and it was deviating by crossing the permitted speed limit. He also stated that the car was able to go nearly 10mph more than the permissible limit for road safety. The rationale given to support this deviation was that it will ensure that car is able to keep up with the traffic and avoid in road obstruction.

Even after the justification, DMV rule has been made mandatory and Google will be to perform the necessary modifications before the car hits highways and public roads. This rule for Google will come into picture from September 16th, 2014. Any car after this date not having the modification will be deemed illegal. Google initially came up with a design which could be added to an existing car to achieve autonomous driving, however during the early part of 2014, they came up with this innovative idea and technology of driverless car.

What to expect now? 

Google is currently working on 100 prototypes of this autonomous car and developing a speed limit of 25mph. Temporary controls also expected to be added to these prototypes. This car is supposed to be tested in private roads with member of common public and later on it will tested on public roads (probably in next 2 years).

Even though Google has been literally forced to add manual steering wheel and pedal, but the giant doesn’t seem to be intimidated by the passed rule. One of the representatives of the company stated that even though manual controls will be added to the car, the users will be able to enjoy the self driving feature and even control it.

Google is still hoping that in the next two years, before the launch of the car, the authorities might show leniency in the rule. Once of concerns area could be the speed driving tickets and who is liable to pay the ticket and insurance issues that will need clearance. We have to wait and see the car in mainstream.

Time Date Stamps: The Solution You Need

When you are looking for the most effective way to mark important documents with the date and time, a time date stamp is the solution for you. Forget about having to stamp every item by hand. Be more efficient, saving yourself valuable resources through the use of a machine that has been designed to make your life easier. Shop now at Time Clock eShop.com and you'll wonder how you ever lived without this vital piece of office equipment.

Imprint Thousands of Items a Day

A time date stamp machine is much more versatile than the traditional hand stamping that was used in the past. When you run a business, you have so many important documents that run through the premises on a daily basis. It's vital that each item is stamped with the correct date and time in order to ensure everything has been received or processed in the proper manner. From mail to bids, medical forms, paid invoices, and contracts, it is absolutely that every document has a stamp bearing the date and the time. There's no need to rely on an outdated method when a highly effective, durable machine can get the job done.

A Time Date Stamp Machine Works on a Variety of Surfaces

The beauty of the time date stamp machine is how easy it is to use, working efficiently on various types of paper. Whatever the material, it can be fed into the machine with ease to receive the current date and time. Heavy cardstock, onion skin paper, and multiple copy forms are only a few examples of the types of paper that can be stamped with ease with a time date stamp machine.

Useful for Many Businesses

Whether you run an office that deals with a great deal of paperwork on an every day basis or run a hospital, there's sure to be a need for a time date stamp machine. You'll love how simple it is to be organized and make sure that all documentation is verified properly. When you need proof of when an item was received or sent out, a time date stamp machine is a must in your business. Don't let another day go by using an outdated method that takes up too much of your employees' time. Use a time date stamp machine from Time Clock eShop.com and rest assured that your documents have received the attention they deserve.

Android Studio

Android Studio is a fresh Android development platform or you can say it is Android developing environment which is based on IntelliJ IDEA. It delivers new concepts and features and also it gives new improvements over Eclipse ADT and soon it will be the official Android IDE once it is completely built. On top of the proficiencies you expect from IntelliJ the Android Studio has some amazing built-in features which provides:

• A very flexible Gradle-based framework system.
• Build modifications and numerous APK generations.
• Comprehensive template provision for services like Google Services and numerous device types.
• It also provides great layout editor with supporting feature of theme editing.
• It also offers amazing lint tools to track the presentation, version compatibility, usability and other such problems including interface.
• One of the best features that it provides is ProGuard and app-signing abilities.
• It provides integral provision for Google Cloud Platform, which makes easy to assimilate Google Cloud Messaging and App Engine together.

But before you start with this amazing Android Studio please note that it is currently available in beta version. So it is possible that some structures are not yet applied in it and there is a possibility that you may find some errors and bugs. So if you feel that you are not relaxed in using this partial product then you can continue Eclipse platform with ADT.

Android studio beta v0.8.6 download package:

• Includes the Android Studio Beta.
• It also includes all the Android SDK Tools that are used to design, develop, test, and debug the application created.
• The download also contains a flavored version of the Android platform that will help you to compile the applications that you will develop.
• The package will also include a version of the Android system image that will allow you to run and test your developed app in the emulator.

In case you previously have Android Studio installed in your system so what happens is that in most scenarios you can possibly upgrade to the advanced or latest version by simply downloading and installing a patch. Just go within Android Studio and simply choose and select Help > Check for updates to keep track and monitor if any update or advance version is available. In case if an update version does not exist then simply click the top button displayed above to download and substitute your current installation package.

But guys there is one caution that you all must be aware of and it is that by substituting your current installation of Android Studio will eliminate any extra SDK packages that you have mounted. The examples of such packages that can get deleted are target platforms or user system images or model applications. Soto reserve these simply copy them from your existing SDK manual under Android Studio to a momentary position before mounting the update. Then simply move them back once the update gets successfully completed. And if by chance you flop to copy these items and tools then you have only one option left i.e. you can download them again with the help of Android SDK Manager.

So if you have any good experience of using Android Studio beta version then please comment below and let everyone know and in the later posts we will discuss about some more features of this tools so till then stay connected.