this post was submitted on 08 Oct 2025
36 points (95.0% liked)
Linux
58917 readers
844 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 6 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Let me repeat my last paragraph, as you seem to have stopped reading after the first question mark:
You're wrong. How would an Apache exploit "hack" your Steam or online banking app? That's just not possible.
How would something that exploits the default password on a router infect my machine with a different password?
Malware uses specific attack vectors and specific vulnerabilities.
The "specific vulnerabilities" are usually in the Linux kernel, quite present on every single Linux system. Please follow the link I posted above. This is not about Apache or any other arbitrary user-facing software.
Thanks for the link. But that's not a vulnerability or malware. It's academic research how to hide malicious syscalls. But it can't infect anyone's computer. And there isn't any vulnerability to let it in.
The RingReaper malware is literally a malware, using known vulnerabilities in the Linux kernel...?!
I'm sorry. Most I can find about "RingReaper" is that single blog post or people who rephrased it into their own articles. There seems to be zero information on how it spreads through the internet? And if anyone contracted RingReaper. And I can't even discern how that'd get on someone's computer unless they install it themselves (which is a form of malware, though not very pronounced on linux due to the distributions and central package repositories). There are no other methods highlighted in the post. And it can't do privilege escalation either, just scan for other vulnerabilities. So is this a thing in reality and how can I find out? It seems like valid research to me, but I can't see how it's more than that... What I mean is, I can see how someone put the word "malware" in the title. But that in itself doesn't really threaten my (or OP's dad's) computer.
It is one of several things in reality. Linux malware, spreading through the (mostly) same paths as Windows malware does, has been real for quite some time now.
Linux malware threatens Linux computers. It might be important to keep that in mind if you use Linux.
Can you explain how its mailware and spreads? The article doesn't say anything except how it hides its calls.
Did you read the article? This Ringreaper thing is a method to hide something. It doesn't have any means to infect a system. And it doesn't really do anything except hide itself. It doesn't delete your files, it doesn't steal your passwords... It doesn't spread... It's not really what you think it is.
Edit: And congratulations for going back and appending your first comment with the wild claim you own the truth. I'm pretty sure people here downvote you because there's almost no truth in what you spread here. I'd be willing to listen, but you don't have any example to back it up. Instead you ramble on how servers are supposed to be desktop computers and attacks target the kernel instead of userspace applications... None of that is true. Sorry I'm not deliberately trying to be mean or hostile. But that's how it is.