Could run a blog fulltime on just *Linux Security Issues* that show up daily.
Microsoft has unveiled a new threat detection service that it hopes can greatly improve security protection on Linux systems.
Project Freta is a free cloud-based tool that is able to detect new forms of malware and other malicious software such as rootkits and cryptominers that Microsoft says could have previously gone undetected in Linux systems.
Malicious rootkits have been exposing Linux, Linux Kernel ‘n Linux Servers *TOTAL* lack of security for some time now.
Think we’ll ever hear an apology from the Linux Community to Microsoft…or even a “thanks” for helping them? Doubtful, tho Ubuntu has worked ‘something’ out with Microsoft, it seems. Anyway, more from that article:
Microsoft says that Project Freta offers a whole new way of detecting malware threats, going beyond existing methods that rely on sensors to predict the presence of something untoward.
Microsoft says Project Freta automatically analyses images of thousands of Linux cloud VMs in order to detect new forms of malware and sensor corruption, and supports over 4,000 kernel versions at launch.
Geez…does Linux even support over “4,000” of their own kernel versions?
Better add some more on Project Freta:
We often think about the field of computer security as a field of walls and barriers that keep intruders out. With Project Freta, we invite readers to think not of walls but of sunlight. When attackers build malware that cannot be detected, they gain enormous economic value. Undetected malware can be continuously re-used: it is never part of attack reporting, never summons incident responders, and never alerts the victim to a data theft event. The economics of reuse can justify enormous attacker investment in malware non-discoverability. Conversely, once a malware strain is discovered, its value plummets in tandem with its reusability. In this stealth economy, that which hides in darkness is removed with sunlight. The question for defenders, then, is how can we raise the cost of non-discovery? Is there a point beyond which a class of malware is no longer economically viable?
So, Project Freta is going to let the ‘Sunshine‘ in until it becomes too expensive for attackers.
Next time some Linux ‘Aficionado’ tells you their Linux Distro is totally secure – direct them to the *Linux Security Issues* page here…