Linux Spike Trojan malware

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

Linux Spike Trojan malware, more widely known as MrBlack, is a type of malware that infects routers, and eventually spreads to other routers.[1] Incapsula, an internet security firm, first saw this malware in December 2014.[2] This tool is prone to attack devices that still use the default credentials. A "bot" is a type of malware that allows an attacker to take control over an affected computer. Also known as "Web robots," bots are usually part of a network of infected machines, known as a "botnet," which is typically made up of victim machines that stretch across the globe.[3]

Once the router has been infected, the attack injects malware in order to configure DDoS attacks. It can be used for MITM attacks, cookie hijacking and other attacks after the targeted router has been infected.

MrBlack is regarded as one of the most widespread malware varieties infecting over forty thousand routers.[2]


  1. ^ "MrBlack Malware". Happy Hamster Computers. 13 May 2015. Archived from the original on 3 May 2016. Retrieved 19 December 2016.
  2. ^ a b Zeifman, Igal; Gayer, Ofer; Atias, Ronen (12 May 2015). "Lax Security Opens the Door for Mass-Scale Abuse of SOHO Routers". Incapsula. Retrieved 4 December 2016.
  3. ^ "What is a botnet?". Norton. Retrieved 15 December 2016.