This is probably not the right community but I haven’t found a better one.

So I watched a video from Seytonic where he mentiond that some malware creates a windows link with the name of the usb on a usb. So I checked my usb because I remembered that I had to click 2 times on my usb to opened it. I found a link that contained cmd.exe and a name of a file next to it. Upload to the virustotal showed Raspberry Roblin worm.

I use Linux but my familly uses windows so I will have to go through all familly computers and remove the worm. Where can I find info how to remove this specific worm - Raspberry Roblin? On google I found a description about how the worm works but not specific files it creates and how to remove it.

The first page that shows up is microsoft.com and it says that windows defender detects the worm, but clearly it doesnt.

Edit: The worm was on one computer and it did not have windows defender installed. Seems like malware removed it and also disabled automatic updates. I installed MalwareBytes and sucessfully removed the worm :)

  • stevedidwhat_infosec
    link
    fedilink
    arrow-up
    10
    ·
    7 months ago

    Bitdefender usually goes on sale too - check for coupon codes, don’t pay full price. Plus you get like 5 devices with your license IIRC. Worth a shot

      • Jumuta@sh.itjust.works
        link
        fedilink
        arrow-up
        3
        ·
        7 months ago

        if you’re changing all your passwords and switching to Linux anyway consider using a free software local password manager like KeepassXC, I use it along with syncthing and it’s great

      • stevedidwhat_infosec
        link
        fedilink
        arrow-up
        7
        arrow-down
        5
        ·
        edit-2
        7 months ago

        And you got what you paid for, no?

        I believe there is a free version as well but don’t think just because you’re installing Linux that you’re somehow safer.

        There was just a package that was essentially socially engineered into by a hacker, who then had full access to everyone’s shit.

        All because a GitHub author was pressured into letting them contribute to code. Mac/Apple are no different and starting to be more and more vulnerable as the “security by obscurity” wears off.

        Free tools are fine and well, but that stuff is done for free. Including maintainence and everything else. In times like these, ain’t nobody got time for that anymore. People need to make a living and you will see degradation in the products thusly

        • laughterlaughter@lemmy.world
          link
          fedilink
          arrow-up
          4
          ·
          edit-2
          7 months ago

          I didn’t downvote you, but I think you’re assuming waaaay too much about OP’s life circumstances. For al we know, he’s an Argentinian teenage girl with an allowance, or a Vietnamese retired fisherman with no life savings.

          • stevedidwhat_infosec
            link
            fedilink
            arrow-up
            3
            ·
            7 months ago

            Could be. However, the point stands, you’re gonna get what you pay for in the end. Not trying to be a dick ofc, but that’s the reality.

            There are some well performing options that are free, but they are limited, and not too common imo

            If anyone does have some good options, feel free to share as I may be unaware of them and think learning about them would be neat

      • stevedidwhat_infosec
        link
        fedilink
        arrow-up
        1
        ·
        7 months ago

        Never heard of this site and would not recommend people plug in their cc details here. Use at your own risk.

        Further, these sites often buy cracked codes from people and that just fuels corporate layoffs and really just hurts the people who put the time and energy into making good products that actually work well and outperform others (like BitDefender)

        BD also has an excellent research lab who contributes to the intel community frequently, which benefits everyone

        Just my 2c. I don’t mind paying for things that work as advertised and are priced fairly.

        • Night Monkey@sh.itjust.works
          link
          fedilink
          arrow-up
          2
          ·
          7 months ago

          Hey whatever you think man. I’ve used them all the time and it’s always good for me. Just trying to help somebody get a good deal.

          • stevedidwhat_infosec
            link
            fedilink
            arrow-up
            1
            ·
            edit-2
            7 months ago

            Nbd, I know you were - was just pointing out potential harm that people may have otherwise not been aware of