• Catoblepas@lemmy.blahaj.zone
    link
    fedilink
    arrow-up
    7
    ·
    5 months ago

    Asking as someone who is absolutely not tech proficient compared to most lemmy users: is this a vulnerability with Linux or Discord specifically, or is this something that could be carried out on any OS/messenger if the computer was infected?

    • NateSwift@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      14
      ·
      5 months ago

      It looks like there isn’t a vulnerability at all. Just a malware executable disguised as a pdf in a zip file that uses discord as a communication method

    • HuntressHimbo@lemm.ee
      link
      fedilink
      arrow-up
      14
      arrow-down
      1
      ·
      5 months ago

      From the article, it sounds as though this isn’t something a normal user should be worried about. They said the security researched believe it targets a Linux distribution used by the Indian government, and the phishing/malicious links seem intended to target Indian officials.

      • Optional@lemmy.world
        link
        fedilink
        arrow-up
        5
        ·
        5 months ago

        According to Volexity, the malware was discovered after the researchers spotted a UPX-packed ELF executable in a ZIP archive, likely distributed through phishing emails. Volexity believes that the malware targets a custom Linux distribution named BOSS that Indian government agencies use as their desktop.

        I use Arch, btw. /s