Skip navigation
Skip navigation
You are using an outdated browser. Please upgrade your browser.

The world's first Linux Internet-worm has been reported "in-the-wild"

Cambridge, UK, January 25, 2001 - Kaspersky Lab, an international
data-security software-development company, last week warned users about
the real threat posed by the Ramen Internet-worm. According to recent
reports, the worm has already caused several incidents of Web sites in
different parts of the world being defaced; therefore, Ramen has become
the first malicious code for Linux that has been detected "in-the-wild".

Ramen was originally discovered in the middle of January 2001, it has the
ability to spread via the Internet and penetrates systems running Red Hat
Linux versions 6.2 and 7.0. In order to gain access to a computer, the
worm exploits three known security breaches in these particular operating
systems. These breaches allow Ramen to take over the root access rights
and unbeknownst to the user, execute its code on the target systems.

During the past several days, Kaspersky Lab has received confirmation of
Ramen penetrating into several corporate networks. Among them are the
National Aeronautics and Space Administration (NASA), Texas A&M
University, and Taiwan-based computer hardware manufacturer Supermicro.
These organisations’ Web sites have been attacked by a worm causing the
Web sites' title pages to appear as follows:

RameN Crew
Hackers looooooooooooooooove Noodles

"The discovery of the Ramen worm ’in-the-wild’ is a very significant
moment in computer history. Previously considered as an absolutely secured
operating system, Linux now has become yet another victim to computer
malware," said Denis Zenkin, Head of Corporate Communications for
Kaspersky Lab. During the past 8 years since Linux was first developed,
there have been discovered about 50 malicious programs for this operating
system, but none of them had yet to be sighted "in-the-wild."

It is important to emphasise that the aforementioned security breaches
were discovered more than half a year ago. Right after this, Red Hat Linux
developers immediately released corresponding security patches
eliminating the problem. "The fact that Ramen penetrated into several
respected organisations, including NASA, shows that even the most
professional network engineers don't pay enough attention to timely
installation of security patches in order to protect their systems. This
worries us most, as neglecting basic enterprise security rules can
stimulate hackers to develop malicious code for Linux," adds Denis Zenkin.

Kaspersky Lab recommends users immediately install all the available
security patches for the Linux operating system regardless of the Linux
distribution you currently use. You can download the patches and read what
Red Hat officials have said about the Ramen worm at the following address:

More detailed technical information about the Ramen Internet-worm can be
found in Kaspersky Virus Encyclopedia at

Kaspersky Anti-Virus, including a version for Linux, can be purchased in
Kaspersky Lab online store or from your nearest Kaspersky Anti-Virus

Notes to Editors

Screenshot of display message available, please contact Sara Claridge 0118
9755188 or email

About Kaspersky Lab

Kaspersky Lab Ltd. is a fast growing international privately owned
data-security software-development company with offices in Moscow
(Russia), Cambridge (UK) and Walnut Creek (United States). Founded in
1997, the company concentrates its efforts on the development of
world-leading anti-virus technologies and software. Kaspersky Lab also
provides free online security related Internet information services. The
company markets, distributes and supports its software and services in
more than 40 countries worldwide.

Media Contacts

Denis Zenkin

Kaspersky Lab, Ltd.

Phone: +7 (095) 797 87 00



Sara Claridge

Marylebone Media Relations

Phone +44 118 975 5188


This press release was distributed by ResponseSource Press Release Wire on behalf of Marylebone Media Relations in the following categories: Consumer Technology, Personal Finance, Business & Finance, Computing & Telecoms, for more information visit