Well, this is interesting. Kaspersky have released KVRT (Kaspersky Virus Removal Tool), which is free to use to scan your systems for issues.
This is not an active virus scanner, it doesn't constantly run on your system. Only when you load it and tell it to scan. It also doesn't auto-update, you need to go and download it fresh from their website each time. Still, it's interesting to see such a big name jump into something like this for Linux don't you think? They say it can "detect both malware and adware, as well as legitimate programs that can be used for attacks".
It may look like a Windows application but that really is on Linux.
As they said in their blog post announcement:
Modern-day cybercriminals aren’t ignoring Linux-based operating systems. Recently, we published a series of posts about malicious code in the open source set of utilities XZ Utils, which managed to find its way into several popular Linux builds; wrote about a Linux implant for the DinodasRAT malware — also known as XDealer; and warned about a backdoor in the Trojanized version of Free Download Manager. Despite all this, the myth that Linux is mostly immune to cyberthreats persists: companies rarely devote funds to protecting machines running this operating system. Therefore, we’ve released a dedicated free product that allows you to check Linux computers for modern threats — Kaspersky Virus Removal Tool (KVRT) for Linux.
What are your thoughts on this, and what do you use on your Linux desktop to keep it secure? Maybe it's time to give over some suggestions in the comments on that.
Article taken from GamingOnLinux.com.
Quoting: legluondunetTo collect information on our Linux hard drives and sell them to companies for their statistics?There are web browsers for this
Quoting: dubigrasuSo it requires an internet connection and asks you to agree to your data being handled and transmitted... somewhere. OK, two reasons to pass on it.
Still curious about it so I've sent the file to VirusTotal to analyze it. It shows some interesting details about what files it writes, copy or modify on your system, what IPs it tries to connect to and what commands it executes.
It also displays a warning: The sandbox CAPE Linux flags this file as: MALWARE, which looks worrisome, but truth be told, I'm a total noob about security, so maybe some one else could took a look and give some insights?
Is enough to send the file or url to VirusTotal ( https://en.wikipedia.org/wiki/VirusTotal ) or a similar site. I used this one since it accepts big file uploads.
I didn't check, but malware defense software might rightfully use techniques that malware uses as well.
Patreon
PayPal
See more from me