Definithing > Mumblehard Malware

Mumblehard Malware

Mumblehard is a strain of malware that primarily targets web servers running Linux and BSD operating systems and surreptitiously uses the infected systems as spamming bots.

The security firm ESET discovered the Mumblehard malware in April 2015, but there is evidence of the malware remaining under the radar for at least the past five years. ESET gave the malware the Mumblehard moniker because it “mutters spam from your servers,” according to the security research firm.
How Mumblehard Works and How to Prevent It from Starting

The Mumblehard malware exploits vulnerabilities in WordPress and Joomla to execute two components written in Perl. The first component is a backdoor that requests commands from the malware’s command and control server, and the second is a spammer daemon that can be launched via a command received by the backdoor.

In addition to exploiting vulnerabilities in WordPress and Joomla, the Mumblehard malware can also be installed through the distribution and installation of backdoored “pirated” versions of a Linux and BSD program called DirectMailer, which is a software tool used for sending out e-mails in bulk.

The Mumblehard malware backdoor is typically installed in the /tmp or /var/tmp directories, and ESET recommends mounting these directories with the noexec option to prevent the Mumblehard backdoor from being able to start. Those concerned with whether Mumblehard is already installed on a server should first look for unsolicited cronjob entries for all users on the server(s) suspected of being infected.

Read Also:
  • OpenStack Kilo

    The successor to the Juno release of the OpenStack open source cloud computing platform, OpenStack Kilo made its debut on April 30, 2015 as the eleventh release of OpenStack. Kilo is also included in the “Vivid Vervet” release of Canonical’s Ubuntu 15.04 Linux-based operating system, which was released in April 2015 as well. Feature Enhancements […]

  • OpEx

    An acronym for Operating Expenses, OpEx refers to the ongoing costs associated with the daily operations of business products, services and/or systems. Operational expenditures stand in contrast to capital expenditures, or CapEx, which are the costs associated with acquiring, developing or upgrading physical assets such as hardware systems or intangible assets like patents and other […]

  • Hyper-Converged Infrastructure

    A hyper-converged infrastructure refers to an infrastructure system that is largely software-defined with tightly-integrated compute, storage, networking and virtualization resources. This stands in contrast to a traditional converged infrastructure, where each of these resources is typically handled by a discrete component that serves a singular purpose. Benefits of Hyper-Converged Infrastructure Systems Hyper-converged infrastructure systems are […]

  • Vivid Vervet

    Vivid Vervet is the Ubuntu codename for version 15.04 of the Ubuntu Linux-based operating system. Officially released in April 2015, Vivid Vervet follows the Utopic Unicorn (v14.10) release. Vivid Vervet introduces updates across the Ubuntu desktop, smartphone, cloud and Internet of Things (IoT) ecosystem as well as the first stable release of Ubuntu’s lightweight “Snappy” […]

  • a Cloud-Native App

    Cloud-native app is a term promoted by VMware to refer to apps that are installed in cloud-based virtual machines. According to VMware, cloud-native apps differ from traditional applications in several keys areas, including: Cloud-native apps use an elastic infrastructure Cloud-native apps need to provision instances of themselves through an API Cloud-native apps must be able […]

Disclaimer: Mumblehard Malware definition / meaning should not be considered complete, up to date, and is not intended to be used in place of a visit, consultation, or advice of a legal, medical, or any other professional. All content on this website is for informational purposes only.