Quails home away from the nest

Home > Linux, SSH > Linux under attack: Compromised SSH keys lead to rootkit

Linux under attack: Compromised SSH keys lead to rootkit

August 28th, 2008 Quail Leave a comment Go to comments

The U.S. Computer Emergency Readiness Team (CERT) has issued a warning for what it calls “active attacks” against Linux-based computing infrastructures using compromised SSH keys.

The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as “phalanx2″ is installed, US-CERT said in a note on its current activity site.

Read the full article here

Categories: Linux, SSH Tags:

Comments (0) Trackbacks (0) Leave a comment Trackback

No comments yet.

No trackbacks yet.

Debian Live Lenny Beta1 VLC and Bluetooth Headset

September 2010
S	M	T	W	T	F	S
« Jun
	1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30

-->

Linux under attack: Compromised SSH keys lead to rootkit

Random Quote

Archives

Categories

Recent Posts

Recent Comments

Blogroll

Links

Quail's Tech

Flickr

Latest Linux Kernel Versions

No Clean Feed

ClustrMaps

Spam Blocked

Categories

Blogroll

Archives

Meta