In the Linux operating system, found a critical vulnerability that threatens the safety of tens of millions of computers, servers and Android-devices. According to experts of the company Perception Point, bug CVE-2016-0728 present on Linux since 2013, starting with kernel version 3.8.
As expected, the developers of Linux-distributions bug fix this week. However, taking into account the complexities of upgrading, many Android- and embedded devices (ATMs, POS terminals, telecommunications equipment, etc.) may be subject to hacker attacks for months and even years.
on the server “hole” could allow an attacker having local access to the computer to get unlimited access to the root directory, and malicious applications on Android-smartphone (with a version of KitKat and later) – to get out of a protected “sandbox” and seize access to the most important functions of the OS . “At the time of detection of a vulnerability threatening about tens of millions of Lunux-computers and servers, as well as 66% of all Android-devices (phones / tablets),” – said the expert.
In 2014, Linux-distributions was found like a bug that could go unnoticed for years. From the “Trojan horse” that exploits the vulnerability, affected the system in 45 countries. As found out then, “Kaspersky Lab”, for at least four years, the virus infects the system in government and educational institutions, embassies, defense, research and pharmaceutical companies.