The general public might have a perception that it’s Windows machines and Android devices that are the world’s malware magnets, but it’s also true that Macs and Linux boxes have malware written for them, too.
Of even greater concern is the threat of Linux-based server-side malware attacking not just one server for malicious purposes, but getting onto that server like a parasite to attempt infection of all the machines that connect to it.
Today, Friday 16 January 2015 is the day Bilodeau is speaking at the conference, the home page of which you can see here (including live streams).
The page for Bilodeau’s topic is here.
Bilodeau is ‘revealing information about ESET’s award winning research into Operation Windigo’, with the ESET working with law enforcement around Windigo.
His talk is about ‘Advanced Linux Server-Side Threats: How they work and what you can do about them,’ alongside how server-side malware has evolved and much more.
Full details of Bilodeau’s talk is here and a video stream of his talk will be made available by the good people of Linux.conf.au.
In short, Bilodeau’s presentation ‘will cover the evolution of the financially motivated Linux malware and will describe the threats that were part of Operation Windigo which affects more than 25,000 servers.’
|
Bilodeau will give ‘in-depth technical details on the pieces of malware involved, show how they are deployed by the operators and how they are able to defeat current defensive technologies’ and will ‘describe hands-on detection and incident response tricks to quickly assess one's servers and help in the fight.’
iTWire’s interview with Bilodeau is embedded below, but we spoke to him on his work at ESET and a bit about his history, what he is talking about at the conference, more about Windigo specifically, how malware has evolved, the use of DevOps techniques, how Windigo is different from traditional threats and plenty more!
You can find out much more information on the Operation Windigo malware at ESET’s ‘We Live Security’ blog here, with a direct link to the company’s Windigo report here (PDF link).
The ‘Good job ESET’ blog post where Windigo’s creators praise ESET for figuring out what Windigo was up to can be read here.