this post was submitted on 15 Jun 2024
178 points (95.9% liked)

Linux

5324 readers
229 users here now

A community for everything relating to the linux operating system

Also check out !linux_memes@programming.dev

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] Catoblepas@lemmy.blahaj.zone 20 points 5 months ago (2 children)

Asking as someone who is absolutely not tech proficient compared to most lemmy users: is this a vulnerability with Linux or Discord specifically, or is this something that could be carried out on any OS/messenger if the computer was infected?

[–] HuntressHimbo@lemm.ee 40 points 5 months ago (1 children)

From the article, it sounds as though this isn't something a normal user should be worried about. They said the security researched believe it targets a Linux distribution used by the Indian government, and the phishing/malicious links seem intended to target Indian officials.

[–] homesweethomeMrL@lemmy.world 14 points 5 months ago

According to Volexity, the malware was discovered after the researchers spotted a UPX-packed ELF executable in a ZIP archive, likely distributed through phishing emails. Volexity believes that the malware targets a custom Linux distribution named BOSS that Indian government agencies use as their desktop.

I use Arch, btw. /s

[–] NateSwift@lemmy.dbzer0.com 31 points 5 months ago

It looks like there isn’t a vulnerability at all. Just a malware executable disguised as a pdf in a zip file that uses discord as a communication method