New SpeakUp Backdoor Infects Linux and macOS with Miners

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
A malware campaign distributing a new Backdoor Trojan named SpeakUp is currently targeting servers running six different Linux distributions and macOS by exploiting a number of known security vulnerabilities, while also managing to evade all anti-malware solutions in the process.

Backdoor Trojans are malware capable of providing attackers with access to compromised machines and to help them control those infected computers using commands sent via command-and-control (C&C) servers.

In most cases, this type of malware allows bad actors to run campaigns designed to operate covertly while giving the attackers as much control over the infected machines as possible, in most cases leading to a complete takeover.

According to Check Point, SpeakUp is a:

Backdoor Trojan that’s exploiting a server technology that runs 90%+ of the top 1M domains in the U.S. It also presented the ability to infect Mac devices with the undetected backdoor. It’s currently gaining momentum and targeting servers (70,000+ worldwide) -- first in East Asia and Latin America, including AWS hosted machines -- and with this, the U.S. could be the next target.
 

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,150
Note that this malware targets linux servers, not linux home users. This is par for the course, since linux servers are a high-value target, whereas linux home users usually are not worth the effort it takes to infect them.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top