Joke’s on them, I don’t use bash.
Seriously though, Linux will probably get targeted more frequently now that it is becoming more popular as a desktop OS.
Yeah but according to the article it installs itself in .bash_profile.
Ok, you got me, i've only read the title.
Still good to make people aware of that, i think.
If you run random .pdf.something-files pm‘d to you on LinkedIn you probably shouldn’t use a computer anyway, no matter if it runs Linux or Windows…
The problem is, using a computer is pretty much essential to function in this world, I actually know more people who would run any file sent to them without a second thought because they wouldn't know better, but they still need to use a computer.
I think a better solution is to give better training to people about computer hygiene at the workplace.
Yeah, i teached my dad (not interested in IT at all) what weird urls in E-Mails look like and he has less spam now. Still 500 unread mails in inbox though.
Exactly, there a bunch of really low hanging fruits that can mitigate most of the risk for non-techy people.
I’m not gonna lie. I want any job, no matter how fake, that uses a reddened North Korean “Hotel of Doom” in its literature.
Still the exploit is easier to avoid compared to windows viruses and stuff. Even with the linux popularity increasing there is already out there good solutions to prevent this kinda stuff like have SELinux installed, use firejail to run suspicious files, use proxies to visit weird sites (you can use proxychains + tor, a bit overkill but works if you don't have a local proxy), etc.
Not to mention that one of the attack vectors of this exploit requires using a systemd feature which is the sysnetd which isnt going to work on other init systems. Reason why a lot of times minimalism can be superior to just having all the features + unnecessary ones out of the box.
Wouldn't it show the icon of an executable file and ask if you want to open it or execute it?
