| Rich Mingin (PLUG) via plug on 29 Jan 2026 14:37:41 -0800 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| Re: [PLUG] Linux Users Targeted as Crypto-stealing Malware Hits Snap Packages |
I mean, I'm sure it's a hot take, but any time I need to use Ubuntu, removing the Snap infrastructure in it's entirety is always very early on my to-do list. Don't support politically motivated projects, in general. AppImage and Flatpak work on Ubuntu with just a tiny bit of work. On Thu, Jan 29, 2026 at 5:35 PM Michael Lazin via plug <plug@lists.phillylinux.org> wrote: > > Stay away from the snap store but if you need snap look at your cpu load with something like htop. > > Michael Lazin > > .. τὸ γὰρ αὐτὸ νοεῖν ἐστίν τε καὶ εἶναι. > > > On Thu, Jan 29, 2026 at 5:31 PM Net Buoy <netbuoyit@gmail.com> wrote: >> >> Is there a solution for this? >> >> On Thu, Jan 29, 2026, 11:10 Michael Lazin via plug <plug@lists.phillylinux.org> wrote: >>> >>> I’ve seen this done on Windows servers. They infect tons of them and mine Monero with cpu and count on people not looking into the cpu load. >>> >>> Michael Lazin >>> >>> .. τὸ γὰρ αὐτὸ νοεῖν ἐστίν τε καὶ εἶναι. >>> >>> >>> On Thu, Jan 29, 2026 at 9:40 AM Walt Mankowski via plug <plug@lists.phillylinux.org> wrote: >>>> >>>> Interesting. I would have thought that any crytomining worth doing >>>> would use enough CPU that I'd notice it pretty quickly. But I guess >>>> maybe if you infect enough machines, you can have each of them run at >>>> a lower priority? >>>> >>>> On Thu, Jan 29, 2026 at 08:29:07AM -0500, jeffv via plug wrote: >>>> > Linux Users Targeted as Crypto-stealing Malware Hits Snap Packages >>>> > >>>> > https://linuxsecurity.com/news/hackscracks/crypto-stealing-malware-hits-snap-packages >>>> > >>>> > Several crypto-stealing campaigns are using Snap packages to land quietly on >>>> > Ubuntu Linux systems. No exploit chains. No privilege escalation. Just >>>> > software that looked legitimate enough to install, then stayed resident long >>>> > enough to make money. For attackers focused on cryptomining, that´s ideal. >>>> > CPU is consumed slowly, the system keeps working, and nothing obviously >>>> > breaks. >>>> > ___________________________________________________________________________ >>>> > Philadelphia Linux Users Group -- http://www.phillylinux.org >>>> > Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce >>>> > General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug >>>> ___________________________________________________________________________ >>>> Philadelphia Linux Users Group -- http://www.phillylinux.org >>>> Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce >>>> General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug >>> >>> ___________________________________________________________________________ >>> Philadelphia Linux Users Group -- http://www.phillylinux.org >>> Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce >>> General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug > > ___________________________________________________________________________ > Philadelphia Linux Users Group -- http://www.phillylinux.org > Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce > General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug