Movatterモバイル変換

[0]ホーム
URL:

Jump to content
WikipediaThe Free Encyclopedia
Search

Drovorub

From Wikipedia, the free encyclopedia
Russian state-created malware toolkit

Drovorub (Russian:дроворуб, "woodcutter") is a software toolkit for developingmalware for theLinux operating system. It was created by the85th Main Special Service Center, a unit of the RussianGRU often referred to asAPT28.[1][2]

Drovorub has a sophisticated modular architecture,[3] containing an implant coupled with a kernel module rootkit, afile transfer andport forwarding tool, and acommand and control server.[2] Drovorub has been described as a "Swiss-army knife for hacking Linux".[4]

The U.S. government report that first identified Drovorub recommends the use ofUEFI Secure Boot and Linux's native kernel module signing facility to resist Drovorub attacks.[5]

References

[edit]
  1. ^"Drovourm Malware: Fact Sheet & FAQs"(PDF).nsa.gov.Archived(PDF) from the original on 2020-08-14. Retrieved21 August 2020.
  2. ^ab"Russian GRU 85th GTsSS Deploys Previously Undisclosed Drovorub Malware"(PDF).media.defense.gov. August 2020.Archived(PDF) from the original on 2020-08-13. Retrieved21 August 2020.
  3. ^Cimpanu, Catalin."FBI and NSA expose new Linux malware Drovorub, used by Russian state hackers".ZDNet. Retrieved2020-08-21.
  4. ^Jerzewski, Matthew (2020-08-20)."Drovorub Malware - "Taking systems to the wood chipper"".The State of Security.Archived from the original on 2020-08-22. Retrieved2020-08-21.
  5. ^"NSA and FBI expose Russian 'Drovorub' malware used to target Linux systems".www.computing.co.uk. 2020-08-14. Retrieved2020-08-21.
Hacking in the 2020s
← 2010sTimeline2030s →
Major incidents
2020
2021
2022
2023
2024
Groups
Individuals
Majorvulnerabilities
publiclydisclosed
Malware
2020
2021
2022


Stub icon

Thisespionage-related article is astub. You can help Wikipedia byexpanding it.

Stub icon

Thismalware-related article is astub. You can help Wikipedia byexpanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Drovorub&oldid=1275239276"
Categories:
Hidden categories:
[8]ページ先頭
©2009-2025 Movatter.jp