Kaspersky releases free tool that scans Linux for known threats

sabreW4K3 , 26 days ago

So Kaspersky are starting to make Linux viruses then?

0nekoneko7 OP , 26 days ago

malware for linux system exists. maybe you’re just ignorant of it.

KISSmyOSFeddit , 26 days ago

Kaspersky itself is malware.

0nekoneko7 OP , 26 days ago

Ever heard of Microsoft?

Norgur , 26 days ago

How is Microsoft related to a tool to scan Linux for malware?

0nekoneko7 OP , 26 days ago

Microsoft is a Malware itself.

ReakDuck , 26 days ago

Ok cool…

Apples grow on trees.

0nekoneko7 OP , 26 days ago

It’s a fact.

30p87 , 26 days ago

That does not oppose Kaspersky being malware in any way … so what’s the point of noting Microsoft?

69420 , 26 days ago

So much whoooosh

TheAnonymouseJoker , 26 days ago

OP, you are fighting racists. There is no victory against brainwormed agenda parrots that do not care about merit.

Vendetta9076 , 25 days ago

Okay I gotta know how the hell you got from A to B. Where is the racism in any of this?

possiblylinux127 , 26 days ago

Yes, and they have similar issues

corsicanguppy , 25 days ago

Wer’re aware of it, comrade.

Gasoline is not the solution to a small fire.

onlinepersona , 24 days ago

Corsica represent!

Anti Commercial-AI license

mundane , 26 days ago

No thanks

boredsquirrel , 26 days ago

This is very cool! Is it FOSS though? Kaspersky is doing good stuff, but I Antivirus is also problematic, and has like all the privileges you can get

boredsquirrel , 26 days ago

I HIGHLY doubt that they would detect the XZ backdoor

69420 , 26 days ago

<span style="color:#323232;">xz --version
</span>

boredsquirrel , 26 days ago

https://media2.giphy.com/media/ZavRegFfujhS00ezVb/200w.webp?cid=6c09b95226i9v5wt8upkv4bxvvx8x3jdq6egipf02k4917v0&ep=v1_gifs_search&rid=200w.webp&ct=g

far_university1990 , 25 days ago

Böhmermann in freier Wildbahn gesichtet

boredsquirrel , 25 days ago

War auch überrascht

atzanteol , 26 days ago

Why? It’s not hard. They typically hash files and look for hits against a database of known vulnerabilities.

boredsquirrel , 26 days ago

Yes and if viruses use something like base64 encoding or other methods, the hashes dont match anymore.

As far as I understood it, it is pretty easy to make your virus permanently un-hashable by just always changing some bits

atzanteol , 26 days ago

The xz backdoor was a packaged file distributed with the standard packages though. It would be trivial to find.

boredsquirrel , 25 days ago

This is obviously not about this known file.

It is about “would this scanner detect a system package from the official repos opening an ssh connection”

atzanteol , 25 days ago

Sorry, I was responding to:

I HIGHLY doubt that they would detect the XZ backdoor

possiblylinux127 , 25 days ago

That doesn’t work against polymorphic malware

I think the best way is to monitor calls and behavior. Doing that is a privacy nightmare

atzanteol , 25 days ago

Who’s talking about polymorphic malware? We were talking about the xz backdoor.

possiblylinux127 , 25 days ago

Oh well in that case there is no chance

possiblylinux127 , 26 days ago (edited 25 days ago)

Even if it did, what would you do? rm -rf /?

XZ is part of the core system

avidamoeba , 26 days ago

10-foot pole ---------------- Kaspersky

slazer2au , 26 days ago

So they have made a Linux antivirus?

0nekoneko7 OP , 26 days ago

ClamAV is the OG

vlnst , 26 days ago

@0nekoneko7 😢

Kornblumenratte , 26 days ago

AFAIK, clamAV hunts Window viruses, not Linux malware. The linux equivalent I know of is rkhunter.

0nekoneko7 OP , 26 days ago

https://lemmy.world/pictrs/image/9c9fc559-9fb4-476e-b82e-d1f6ba46e2bc.gif

possiblylinux127 , 26 days ago (edited 25 days ago)

There are plenty if Linux end point protection tools. However, I think the best protection is security patching.

For personal use I don’t think there is any good malware detection tools. I think you just need to harden your browser and not install random packages from online. Best if you stick with distro repos only.

fschaupp , 26 days ago

Really? I just found enterprise grade e.g. server security tools. Most sites I found were ourdated, where the Linux EndpointSecurity tools were discontinued (even tho the server tools would probably as good as EndpointSecurity)

possiblylinux127 , 26 days ago

I am talking about enterprise grade

Norodix , 26 days ago

Does it find itself?

TheAnonymouseJoker , 26 days ago

Does western software find itself?

possiblylinux127 , 25 days ago

It just removes itself along with Nvidia, Realtek and Broadcom

MrPoopyButthole , 26 days ago

How much are they paying you?

0nekoneko7 OP , 26 days ago

https://lemmy.world/pictrs/image/7d75af7a-4ee6-4295-9aed-41c0233774e1.gif

davel , 25 days ago

To mention anything remotely associated with Russia is to be a paid Putler puppet; a lot of people are saying. See you at Tolstoy & the Dostoevsky book burning.

chocosoldier , 24 days ago

oh look another troll dragging geopolitical culture war bullshit into everything

biribiri11 , 26 days ago

deleted_by_moderator

CrabAndBroom , 26 days ago

It’s an older interview, but I like to bring this up whenever Kaspersky comes up as a topic:

If you had the power to change up to three things in the world today that are related to IT security, what would they be?

Internet design–that’s enough.

That’s it? What’s wrong with the design of the Internet?

There’s anonymity. Everyone should and must have an identification, or Internet passport. The Internet was designed not for public use, but for American scientists and the U.S. military. That was just a limited group of people–hundreds, or maybe thousands. Then it was introduced to the public and it was wrong…to introduce it in the same way.

Adanisi , 26 days ago

Fuck that.

Shadowedcross , 25 days ago

Yeah, I sure as shit wouldn’t use the internet if it wasn’t anonymous, seems like a weird thing to want when people are more concerned for their privacy than ever before.

Allero , 26 days ago

Kaspersky actually has a good track record of NOT being anything malicious (Except for old times when it seemed to flag pirate software quite often).

However, if the tool is closed-source, this is naturally against Linux ethos and is generally something to avoid, given extensive permissions.

fschaupp , 26 days ago

Well, on the other side I have Steam and most of the games there are closed source… Yes they run in user mode and (usually) don’t have kernel level access.

Allero , 26 days ago

Yes, kernel level access is what makes it a much bigger deal.

possiblylinux127 , 25 days ago

I don’t like that either

pearsaltchocolatebar , 26 days ago

I’m not sure I’d give Russian software root access to my systems.

far_university1990 , 25 days ago

What about 7zip?

pearsaltchocolatebar , 24 days ago

I don’t give 7zip admin access to my system.

KingThrillgore , 25 days ago

They actually had a good track record but I think a FSB stooge took a board position and at that point…

ssm , 26 days ago

Support ClamAV instead of this trash

TheAnonymouseJoker , 26 days ago

ClamAV is so bad, Windows Defender is twice as good. FOSS zealots are too blind.

ssm , 26 days ago (edited 26 days ago)

“ClamAV is bad so instead of improving it I’m going to cuck to proprietary standards instead”

I never said ClamAV was good or bad, nor was that the point.

TheAnonymouseJoker , 26 days ago

I’m going to cuck to proprietary standards

Open source will never compete with Kaspersky in security field. Security field requires extreme levels of meritocracy and a disposal of capital infrastructure as and when needed. The latter is beyond lacking in open source ecosystem, and will always be lacking. The former is also far from the level field at which Kaspersky plays.

If you do not understand this, you have failed digital security already. Lying to yourself is never going to solve problems.

BaroqueInMind , 25 days ago

deleted_by_moderator

corsicanguppy , 25 days ago

My entire career is one counterexample to this after another. It’s not that I’ve seen different; I’ve only seen different.

Now go fud someone else if you want your weekly bonus, comrade.

TheAnonymouseJoker , 25 days ago

deleted_by_moderator

corsicanguppy , 23 days ago

Was that what got my comment removed?

My entire career is one counterexample to this after another. It’s not that I’ve seen different; I’ve only seen different.

Or that?

Now go fud someone else if you want your weekly bonus, comrade.

It reminds me of a joke that ends in “I don’t know, and I don’t care”, but the setup seems so much more relevant.

possiblylinux127 , 25 days ago

It isn’t terribly good

TheAnonymouseJoker , 26 days ago

The amount of xenophobic racists in this thread are revealing themselves. Thank you OP. It proves they will disregard merit for supporting English fascism.

laurelraven , 25 days ago

I’m sure I’m going to regret asking this, but how is not liking Kaspersky, in and of itself, racist or xenophobic?

dRLY , 25 days ago

It is because so many people see a Russian security company and just go on and on about “Russian company? they can’t be trusted!” While they act like US companies/government is somehow trustworthy by default (or at least by the omission of only dunking on the “always evil” vibes of anything Russian). Russia is very up front about their laws and their opinions of how they do or want to do. While US companies and the US gov love to also push that narrative hard and loud all the time.

They go on and on about “privacy” being like the most crucial thing ever. But they are also the very same fucks that have and actively at this moment find every way to just vacuum up all of our information, chats, searches, etc… And even when we get proof beyond proof that the US gov and private companies are doing this on their own or colluding. It is somehow the Russian companies (or insert whichever country) that are somehow more “evil” for doing shit.

Hell, the US is constantly spying on and inside our own allies. I really don’t see why our allies would freak out about shit like Chinese cell technology. But they are tripping over themselves to willingly build complete infrastructure with shit that the US gov most certainly has backdoors to backdoors inside. It isn’t about Russian companies being more or less trustworthy. But it is dumb as fuck to act like they are somehow worse than US companies with gov contracts. I am honestly more worried about what my own gov is doing to me than shit other nations companies might be doing. Do I want other nations companies having access to my shit? Fuck no, but acting like they are actively more a threat to spying on me as a US citizen than the profit chasing companies Enshittifying everything with adware/spyware. AND knowing that my own tax dollars are also being paid to them to give my gov access to it and me is stupid.

possiblylinux127 , 25 days ago

I don’t normally say this but maybe its time to go outside. I haven’t found any Xenophobic or racist comments. Maybe they were removed or something.

beefbot , 25 days ago

The amount of disinformation bots or actors on any thread anywhere— despite what blamethrowing you might see in any direction — is incalculable. Trust no comment!

jjlinux , 25 days ago

Yay, let’s install Spyware on our Linux computers 👌

palarith , 25 days ago

Does it scan for Kaspersky?

foremanguy92_ , 25 days ago

First is it open source, and why do they made a such tool? 😂