Open Source in Hacker Cross-Hairs?

Lora Bentley

Earlier this week, Symantec warned of an OpenOffice worm, Badbunny, that can infect Windows, Linux and Mac operating systems. When an infected document is opened, the worm launches a macro. What that macro does, according to ZDNet, depends on the operating system:

On Windows systems, it drops a file called drop.bad, which is moved to the system.ini file in the user's mIRC folder. It also executes the JavaScript virus badbunny.js, which replicates to other files in the folder.

 

On Apple Mac systems, the worm drops one of two Ruby script viruses in files respectively called badbunny.rb and badbunnya.rb.

 

On Linux systems, the worm drops both badbunny.py as an XChat script and badbunny.pl as a Perl virus.

Today, silicon.com writer Aaron Tan notes that the worm may be a harbinger of increased attacks on open source programs. It's not that open source itself is more vulnerable, a Symantec rep says, but that open source's increasing popularity is grabbing the attention of malware writers.



Add Comment      Leave a comment on this blog post
Jun 25, 2007 5:54 AM Chris Chris  says:
I have predicted that "open-source" apps and tools will become the next heaven for hackers. After all, open source is created, maintained and extended by hackers. The biggest security-flaw of anything is "openness". Watch out financial institutions - NOTHING is save."A true prophet gets known by foretelling the truth - every time" Reply

Post a comment

 

 

 

 


(Maximum characters: 1200). You have 1200 characters left.

 

null
null

 

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.