P.S. The Pi is also running as a server.
P.P.S The Kaiten programme was running under root.
Or the OP has opened a port to the public internet without hardening the security on the system. Userid=pi with password=raspberry and allowed to use sudo with no protection is a very simple infection vector.Heater wrote:Where did you get your SD card image from?
According to Symantec:
"The Trojan must be manually installed and executed by the user"
So either you have done this or your SD card provider has.
https://www.symantec.com/security_respo ... 18-2341-99