Are individual (non-server) users of Linux distributions "possible" targets of ransomware attacks ?
Was reading these 2 articles and they mention Linux servers as being possible targets but as
far as I could see nothing was mentioned about individual (home) users of Linux.
https://www.zdnet.com/article/this-new- ... ue-attack/
https://www.forbes.com/sites/daveywinde ... e9804d3265
Are these ransomware attackers only interested in (and thus target) deep pocket organizations (with servers) or
is it possible for them to also target any MS$ and/or Linux machine that they thought they could
get some of that fake money out of no matter how little the amount might be ?
Thanks.
Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
Forum rules
Do not post support questions here. Before you post read the forum rules. Topics in this forum are automatically closed 6 months after creation.
Do not post support questions here. Before you post read the forum rules. Topics in this forum are automatically closed 6 months after creation.
Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
Last edited by LockBot on Wed Dec 28, 2022 7:16 am, edited 1 time in total.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Reason: Topic automatically closed 6 months after creation. New replies are no longer allowed.
Mint 21.3 Mate.
SERVICE > competition
SERVICE > competition
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
Cyber-criminals are not a homogeneous group, there is no generic profile. Targets are defined by motivation (as diverse as greed, cyber-terrorism, narcissism, activism, need etc). Anyway, more likely targets are Financial Services, Power and Energy companies, big companies with more than 1000 employees. A Linux user is even not on the horizon.
-=t42=-
- Larry78723
- Level 14
- Posts: 5476
- Joined: Wed Jan 09, 2019 7:01 pm
- Location: Jasper County, SC, USA
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
The people behind these ransomware attacks are looking for large sums of money. They're hitting organizations with "deep pockets". I don't believe any individual needs to fear a ransomware attack, regardless of what OS they're using.
If you have found the solution to your initial post, please open your original post, click on the pencil, and add (Solved) to the Subject, it helps other users looking for help, and keeps the forum clean.
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
.. but the bad guys are continously probing for vulnerable systems/password.. I got a little nuc box with a service exposed (I know, bad idea) , installed Fail2Ban on it and it has now banned 90 IP's tried to authenticate more than 5 times since last night.
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
IMO it is deeply unlikely to trouble a normal Linux desktop user, unless doing something unwise. But if I were worried about that way of losing data then I'd also be worried about losing them by more likely means too; an appropriate regime of data backups (and if necessary, system backups) would cover many eventualities.
- Lady Fitzgerald
- Level 15
- Posts: 5812
- Joined: Tue Jan 07, 2020 3:12 pm
- Location: AZ, SSA (Squabbling States of America)
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
While entities with deep pockets are the most likely targets, anyone can be taken in by spoofing emails that trick users into "inviting" in ramsomware hackers.
Jeannie
To ensure the safety of your data, you have to be proactive, not reactive, so, back it up!
To ensure the safety of your data, you have to be proactive, not reactive, so, back it up!
- absque fenestris
- Level 12
- Posts: 4110
- Joined: Sat Nov 12, 2016 8:42 pm
- Location: Confoederatio Helvetica
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
(HTML input - Very colorful with photos, text markup, selection fields, etc.)Lady Fitzgerald wrote: ⤴Sun Jul 11, 2021 2:27 pm While entities with deep pockets are the most likely targets, anyone can be taken in by spoofing emails that trick users into "inviting" in ramsomware hackers.
You have just won a brand new iPhone 12 Pro Max!
Choose your finish:
Graphite Silver Gold Pacific Blue
Tick the desired finish and confirm by clicking on the link below...
(Text only input)
The same text blah blah but in a boring Monotype font and some boring empty boxes with remarks about withheld or unloaded content etc. - and with this undesign already the whole fuss is kind of ridiculous.
There is a lot to be said for not using HTML in email traffic ...
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
Generally, Linux attacks don't work like under Windows - mainly because downloaded files are different. Windows invites user based attacks by a number of Windows specific flaws:
So, yes, ransomware for Linux exists - but the key question is how to get a desktop user to execute that. Keep your installation up to date (in particular the browser), and install stuff only via the regular package manager.
- Files are executable by default just as per their file extension.
- The file extension is hidden by default.
- Executables can embed any custom icon they want, such as a PDF reader icon.
So, yes, ransomware for Linux exists - but the key question is how to get a desktop user to execute that. Keep your installation up to date (in particular the browser), and install stuff only via the regular package manager.
- Lady Fitzgerald
- Level 15
- Posts: 5812
- Joined: Tue Jan 07, 2020 3:12 pm
- Location: AZ, SSA (Squabbling States of America)
Re: Are individual (non-server) users of Linux distributions targets of ransomware attacks ?
Those are obvious scams. Spoofing refers to emulating a vendor, service provider, etc. via email, etc. to trick you into giving up personal data that can be used for identity theft, clearing out a bank account, hijacking a service, etc.absque fenestris wrote: ⤴Sun Jul 11, 2021 3:44 pm(HTML input - Very colorful with photos, text markup, selection fields, etc.)Lady Fitzgerald wrote: ⤴Sun Jul 11, 2021 2:27 pm While entities with deep pockets are the most likely targets, anyone can be taken in by spoofing emails that trick users into "inviting" in ramsomware hackers.
You have just won a brand new iPhone 12 Pro Max!
Choose your finish:
Graphite Silver Gold Pacific Blue
Tick the desired finish and confirm by clicking on the link below...
(Text only input)
The same text blah blah but in a boring Monotype font and some boring empty boxes with remarks about withheld or unloaded content etc. - and with this undesign already the whole fuss is kind of ridiculous.
There is a lot to be said for not using HTML in email traffic ...
Jeannie
To ensure the safety of your data, you have to be proactive, not reactive, so, back it up!
To ensure the safety of your data, you have to be proactive, not reactive, so, back it up!