Symantec has unwrapped their latest speculation engine and fired a huge salvo across all our bows with a blog post titled "Linux Worm Targeting Hidden Devices". Note the crisp analysis:
We have also verified that the attacker already hosts some variants for other architectures including ARM, PPC, MIPS and MIPSEL…. The attacker is apparently trying to maximize the infection opportunity by expanding coverage to any devices running on Linux. However, we have not confirmed attacks against non-PC devices yet.
In other words, the only known attacks are on PCs. Other devices are just speculation. Given the Symantec report details, it seems quite clear the attacker is NOT TARGETING HIDDEN DEVICES.
Thank you for your attention.