Ever since, I have published on How to Install Linux on Windows Operating System, there had been numerous mails which stated that the users liked Linux because it was virus free. Windows users always cursed the operating system because of it’s ability to be prone to virus, malware and spyware. How many times had Windows users been envious of their counterparts who were happily towing away with Mac and Linux machines!! But, now Windows users can find solace because of the news of Linux systems being infected with a deadly malware giving access to anonymous users. As we had learnt that Macs were infected by email worm a while earlier, this comes as a fresh news.
Linux users had always been adamant enough to argue that any flavor of Linux does not need any protection from viruses and malwares. While this is partially true, the main point to consider is not that Linux has the in-built protection, but the reason why it does not get infected is, no hacker wishes to write a virus for it. Why, you may ask?
The reason is, Linux is a freeware and is built and developed by enthusiasts who support Open Source. There is not reason in writing a virus for an OS which developers themselves created in the first place in order to share it freely. Hackers are mostly against the corporate Operating Systems built by empires and whose code is not shared to the general public to learn and educate themselves. Now, we get to see that Linux too has started getting its own share of malwares.
If you are a Linux user and you have downloaded an installed open source Unreal IRC Server within a period of last 8 months, that is from Nov-2009 to till date June-2010, then you are susceptible that your version has a backdoor. This is something quite similar to Conficker worm which hit Windows users at the same time last year.
How bad is it? VERY BAD, as stated at Unreal Forums.
As a pinch of salt, Windows versions of Unreal Server was NOT AFFECTED.
[...] Articulo que consigna el suceso, mal y desinformado: http://teamnirvana.com/blog/linux-security-under-malware-threat-unreal-irc-server-aids-windows-to-be... [...]
While I can certainly appreciate the post, let’s not panic. The backdoor only allows the intruder to run commands in the permissions of the user. Most Linux users do not run as root and if sudo is used a password will still be required. Serious? Yes but as long as strong passwords are used and never run as root, not nearly as serious as any of the Windows variants such as the conficker worm you mentioned.
You are absolutely right Johnny. But, I suppose most of the linux users who set up an IRC server for their pals and themselves do not take necessary precautions and log in as super users themselves.
In this scenario, I think the worm does pose a serious threat because of it’s capability to open a backdoor. But,as you rightly said, if root is safe, then backup would suffice.