Techly NewsGet the app

Get the latest tech news

Kernel.org servers infected with backdoors for two years from 2009


Ebury backdoors SSH servers in hosting providers, giving the malware extraordinary reach.

The unknown attackers behind the compromise infected at least four servers inside kernel.org, the Internet domain underpinning the sprawling Linux development and distribution network, the researchers from security firm ESET said. After obtaining the cryptographic hashes for 551 user accounts on the network, the attackers were able to convert half into plaintext passwords, likely through password-cracking techniques and the use of an advanced credential-stealing feature built into the malware. The malware, the firm said, came in the form of a malicious code library that, when installed, created a backdoor in OpenSSH that provided the attackers with a remote root shell on infected hosts with no valid password required.

Get the Android app

Or read this on r/technology

Read more on:

Photo of years

years

Photo of SSH

SSH

Photo of dwelling backdoor

dwelling backdoor

Related news:

News photo

Ubisoft's free-to-play shooter The Division Heartland cancelled three years after being announced

News photo

SPECULOOS Uncovers Earth-Sized Exoplanet Just 55 Light-Years Away

News photo

Apple blocked $7 billion in fraudulent App Store purchases in 4 years

« Apple on track for quarter of all iPhones to be made in India by 2028