Security News OutlawCountry Is CIA's Malware for Hacking Linux Systems

[LASER_oneXM]

....some quotes from the article:

WikiLeaks dumped today a manual describing a new CIA malware strain. Called OutlawCountry, this is malware designed for Linux operating systems.
The leaked user manual — dated 04 June 2015 — details a kernel module for Linux 2.6 that allows CIA operatives to divert traffic from a Linux machine to a chosen destination
Shell access and root privileges are needed to install OutlawCountry, meaning CIA operatives must compromise machines via other means before deploying this malware strain.

An effective tool for spying on Linux servers
OutlawCountry can be used for both servers and regular desktops, as it allows a CIA operative to redirect the target's traffic to proxy servers under the CIA's control and sniff the user's Internet habits or mount other attacks.
Obviously, more damage can be done if OutlawCountry is installed on a server, allowing an operative to sniff traffic from many users at once.

 

[jamescv7]

Way back before, so many hacking/malware tools were easily developed under of Linux considering the fact it's not widely use and more on experimenting the development process.

Another thing where it's so difficult to track because of different environment and the tools can effectively execute to create havoc, therefore not a surprise that it circulates in Linux part.