Virus Alert! A Linux Only Trojan “Hand Of Thief” Spotted In Grey Market

Trojan Malware Hand of Thief in Lunux

If you did not know it already, let me break this ‘news’ to you: Linux is not virus proof. As Linus Torvalds say, all OS suck but Linux sucks less, similarly Linux is less vulnerable to virus or malware as compare to others (means Windows). A recent example that we have seen the Linux security loophole that lingered for over two years giving unauthorized users near root access.

Linux is at target again. A Russian hacker crew (not sure if they have sexy hackers like Kristina Svechinskaya) has started offering a banking Trojan, named Hand of Thief, specifically for Linux operating systems. The malware is up for sale with a price tag of a whooping $2000 in grey markets. If you think $2000 is too high a price, you should know that it is discounted price for early adopters. Once the product develops completely, the price will rise up to $3000. The said price also includes after sale service support. Their team also consists of sales agents and software developers, reports RSA research team.

Interface of Hands of Theif Linux Banking Trojan

As per the Trojan developers clam, they have successfully tested it on 15 Linux distributions including Debian, Ubuntu and Fedora. As far as desktop environments are concerned, they have tested it on 8 desktop environments including GNOME and KDE desktop enviornment.

You can read more about it here. What you think of this new found trojan malware? Is it a good move by the hackers to focus on Linux knowing that it has small user-base? Let us know your views.


  1. Well, well, I always knew hackers would turn towards LINUX sooner or later. Especially since Virgin Bank, dropped Windows like a hot potato, owing to its many security risks, as did The London Stock Exchange, and I’m sure they are glad they did, especially, since the latest version of Windows, Windows 10, has a built in key logger.

    I guess what we need to do, to help the world, to realize the benefits of FOSS and Linux, would be to introduce them to a WINDOWS CLEANER, that would remove Windows and install Linux. – But all joking set aside, I think that it is probably the Virus Protection Software companies, that are fighting for their lives, and wish to exploit this fact.

    Cyber crime is on the rise, as are all sorts of phishing scams, incl. those who phone you and tell you that they are from The Windows technical department, and that your computer has been flagged as being slow, due to viruses; And then they wish to sell you something you don’t need.

    Slow computers are due to to much junk being activated. I recently saw an article about a command (forget what it was), that looks at your set up, and uses it to boot, instead of going through a long list of stuff you don’t need.

    Getting back to the viruses ‘Hand of Thief’ and ‘Turla’, we may have to consider upping the Ante, and start scanning for these ‘lice’ prior to boot up, and ‘plug’ the holes in the system.

    I wish I had that kind of knowledge to help the community, but my knowledge is limited to localizing, software, websites and applications.

    Till next time,

    May the FOSS be with you,


  2. My view is the casual user is not the target for this virus, We are to few other than it be an inconvenience to us. They want to disrupt maybe infra-structure devices that have control software based on linux. Climate control, pumping stations, power production and transmission as examples. The growing number of businesses turning to open source and all the linux based servers that have been running for years.

    • Largely agree. The malware is in beta and doesn’t look like a threat, at least not now. And moreover it does focus on specific targets (as you mentioned) and doesn’t propagate on its own like Windows virus.

    • lol… may be.. may not be… one Linux security vulnerability was there for over two years. While this so called “Linux malware” sounds more like “Hack Facebook of your ex-lover with this toolkit” product, it is at least a sign that people are taking Linux seriously :)

    • Nothing is safe. It depends on the user mainly. Windows has a large userbase and this is why it is more vulnerable (from user’s end) and it is more targeted (from attacker’s end) and obviously it has more security loopholes (from manufacturer’s end).

Leave a Reply

Your email address will not be published. Required fields are marked *