Microsoft uses its expertise in malware to help with fileless attack detection on Linux

The Register ^ | Feb 25, 2020 | Richard Speed

[Bob434]

I’m sure it’s probably ok- but i just feel a bit funny abotu goign that route- I downloaded the fale from sourceforge, and checked the checksum # which proved to be the right one, then installed it from there by rightclicking and choosing the gdebi package installer from the list- I also installed firetools, which is the graphical interface for firejail, and it’s all working now-

At least i think so- I run the command firejail —list - and it shows firefox running in the list, so i assume my firefox is now running in firejail-

[Bob434]

[[I know just enough about linux to get into trouble,]]

Yup me too- Do you use “TimeShift” (it’s installed automatically i think if you run linux mint) to back up your system before you try stuff? It’s a pretty good safety measure- if everything works fine for a week or so, I’ll go and delete the backup file because they are quite large- around 12 gig-

[Cats1]

I love timeshift. It’s saved me a few times!

[MikelTackNailer]

Good news, excellent to know but not critical if one reboots daily like they should, anyway. With Windows I kept all my condoms on (ZoneAlarm, free non-invasive anti-virus because the big names behave like viruses, malwarebytes, AdAware when it was good) and stayed aware of the infector sites.

Nowadays we have evil programs that get in and wait, some that quietly eat away programs meant to fight them and now crap like this bastard. Why these people don't use their talent to write better software than what's currently available mystifies me. It has to be as Alfred told Bruce: "Some men just want to see the world burn".

Thought about your tagline.

[elbook]

The policy set under the SHODDY MASTER Bill Gates had Microsoft have product security which was terrible — FOR DECADES and
used their monopoly status to be able to ignore any significant correction — a truly disgraceful business practice.

If the software was done correctly, from the start, there would be no such vulnerabilities. Bad practices up and down the levels of employees/management.

SO MicroShoddy is NOT the one who should be touting their ‘security’ accomplishments, nor helping anyone else.

[rarestia]

Might want to do a little research. Azure is not platformed on Linux.

[dayglored]

> Might want to do a little research. Azure is not platformed on Linux.

I was going by the final sentence in the Register article:

"However, as its continued love-in with Linux continues (heck, a large chunk of Azure is running the OS),..."

Are you saying El Reg needs to do some research?

The only for-sure knowledge I have is a few years old, when the Windows Update server network overloaded, went down in flames, and was switched over to Akamai's CDN, which was understood at that time to be Linux-based -- that irony generated a lot of snickering from the Linux folks here and elsewhere.

Microsoft still offers Akamai as one of its Azure CDN options, AFAIK. I rather doubt that it's being done with Windows Server instances, but whether it's Linux per-se, or some *IX variant that Akamai has developed and customized, I don't know.

[usconservative]

One might suspect that the reason Microsoft is so interested in helping Linux is that their own Azure Cloud Services run (in large part) on Linux, not Windows Server. Linux is the OS Of The Cloud for a good reason, and it's great that Microsoft is supporting that view.

The large multi-national bank I work for has a substantial footprint on Azure now, RedHat Linux being the predominant OS we deploy there. Personally, I have two Ubuntu Linux Servers running on Azure. This is the first I'm reading of this capability, thank you so much for posting about it. I'm curious to know from our Cloud Engineering Team today if they've enabled this capability in our environment on Azure. :-)

[usconservative]

I don't know; perhaps another FReeper has an informed opinion.

I don't know of a single Linux Admin who'd deploy a browser or email package on a Linux Server. (At least not a single Linux Admin who's worth their salt.)

[usconservative]

I love timeshift. It’s saved me a few times!

I just installed Timeshift, created a new external file system for backups and ran Timeshift on my Ubuntu 19.10 desktop ... wow! That was so much easier than anything I used to do under Windows.

[usconservative]

I love timeshift. It’s saved me a few times!

I just installed Timeshift, created a new external file system for backups and ran Timeshift on my Ubuntu 19.10 desktop ... wow! That was so much easier than anything I used to do under Windows.

[usconservative]

ROFL! I just timeshifted a post, hahahahahha! (bad joke, sorry!)

[rarestia]

Azure hosts a LOT of Linux. Not as much as AWS, but Linux runs exceptionally well. The article wasn’t referring to the hyper visor.

[dayglored]

> Azure hosts a LOT of Linux. Not as much as AWS, but Linux runs exceptionally well. The article wasn’t referring to the hyper visor.

I went back and re-parsed the Reg sentence, and indeed, that probably does refer to the client, not the hypervisor.

Enlighten me -- what hypervisor is Azure using, standalone Windows Hyper-V Server I'd guess?

[rarestia]

Microsoft’s data center platform is based around SCVMM (System Center Virtual Machine Manager). It’s a specialized hyper visor for cloud that manages HyperV as the host hypervisor.