Skip to content

New shc-based Linux Malware Targeting Systems with Cryptocurrency Miner

paul pon raj

A new type of Linux malware has been discovered that uses the shell script compiler (shc) to deploy a cryptocurrency miner on infected systems.

According to the South Korean cybersecurity firm AhnLab Security Emergency Response Center (ASEC), the malware is spread through dictionary attacks on inadequately managed Linux SSH servers.

Once a server has been compromised, the malware installs a shc downloader and a Perl-based DDoS IRC bot.

The shc downloader then fetches the XMRig miner software to mine cryptocurrency, while the IRC bot can connect to a remote server to fetch commands for conducting distributed denial-of-service (DDoS) attacks.

The ASEC researchers believe that the campaign is primarily targeting poorly secured Linux SSH servers in South Korea.

Users are advised to practice good password hygiene and keep their operating systems up to date to protect against this type of attack.

Calculate Linux: It’s like Gentoo, but for businesses

Calculate Linux is a family of Linux distributions that have been around since 2007 and its latest release, Calculate Linux 23, came out just before the end of last year.

The Calculate Linux family is made up of three main editions: Desktop, Directory Server, and “Scratch”. The Desktop edition comes in five different versions, each with a different desktop environment: KDE, Cinnamon, LXQt, MATE, and Xfce.

In addition, there is a new tool called the Calculate Container Manager. The default desktop for Calculate Linux is KDE, though it is not the latest version.

The installation process for Calculate Linux is quite complex, and we experienced some issues with it. We were unable to complete the installation and were unable to enter a password that met the required password limits.

The installer also wanted to use a large amount of disk space and create a dedicated volume for /var/calculate. The default file system for Calculate Linux is Btrfs.

We were able to try the live images for the KDE and Xfce versions of Calculate Linux and found that the desktop layouts were similar, but the graphical themes were different. The Xfce version uses the latest version of Xfce and has a theme that is somewhat similar to KDE.

Overall, we were unable to give Calculate Linux a thorough review due to installation issues and the use of confusing abbreviations.

However, there are positive comments about Calculate Linux online, particularly regarding the compatibility of the Directory Server edition with Windows clients.

Calculate Linux is based on Gentoo, which is also the basis for Chrome OS, the most widely used desktop Linux in the world.

AMD Ray Tracing on Linux gets closer

Mesa, the open-source graphics driver, is making progress in implementing AMD Ray Tracing technology. In the latest update, support for the feature will be enabled by default in the games Quake II RTX and Doom Eternal.

While it is currently possible to manually enable AMD Ray Tracing in Mesa, the development team is working to create a list of specific games that are known to work well with the technology.

This update is expected to be included in Mesa 23.0, which is scheduled for release later this year.

One developer noted that while the technology is not yet ready for widespread implementation, it is worthwhile to begin enabling it for a few select games so that users can start experiencing it.