Kaspersky has launched a brand new virus removing software named KVRT for the Linux platform, permitting customers to scan their programs and take away malware and different identified threats free of charge.
The safety agency notes that regardless of the widespread false impression that Linux programs are intrinsically safe from threats, there was a continuing provide of “within the wild” examples that show in any other case, most just lately, the XZ Utils backdoor.
Kaspersky’s new software is not a real-time menace safety software however a standalone scanner that may detect malware, adware, legit packages abused for malicious functions, and different identified threats and gives to wash them.
Copies of malicious recordsdata which might be deleted or disinfected are saved in a quarantine listing at ‘/var/decide/KVRT2024_Data/Quarantine’ (for root customers) in a non-harmful type.
The applying makes use of a steadily up to date antivirus database to scan your entire system for matches, however customers have to obtain a brand new copy every time for the most recent definitions.
“Our utility can scan system reminiscence, startup objects, boot sectors, and all recordsdata within the working system for identified malware. It scans recordsdata of all codecs — together with archived ones,” says Kaspersky.
One factor to notice is that KVRT solely helps 64-bit programs and requires an energetic web connection to work.
Kaspersky has examined the software on in style Linux distributions and confirmed it really works on Purple Hat Enterprise Linux, CentOS, Linux Mint, Ubuntu, SUSE, openSUSE, and Debian, amongst others.
Even when your distribution is not on the record of supported programs, there is a good probability that KVRT will work with out issues, so it would not damage to try to run a scan, Kaspersky says.
Utilizing KVRT
KVRT may be downloaded from right here, and as soon as downloaded, the consumer must make the file executable and run it as root for optimum performance.
KVRT may be executed each in a graphical consumer interface (GUI) or the terminal, as a command-line software. So, it is also usable in decrease init runlevels (down to three) the place folks may be caught following a malware an infection.
If common customers execute the scanner, it will not have the required permissions to scan all directories and partitions the place threats might be hiding.
Throughout initialization, the scanner unpacks some crucial recordsdata into a short lived listing at ‘/tmp/<random_character_sequence,’ however these are wiped as soon as it is closed.
Kaspersky has supplied detailed directions on arrange the binary for execution each by way of the GUI and the console on this webpage.
BleepingComputer has not examined the effectiveness, nor can it assure the protection of KVRT, so use the software at your personal danger.