Compromised SSH Keys Lead to Linux Rootkit Attack

Slashdot

Compromised SSH Keys Lead to Linux Rootkit Attack 0

Submitted by Tech Groupie on Tuesday August 26 2008, @09:48PM

Tech Groupie writes "The U.S. Computer Emergency Readiness Team (CERT) has issued a warning for what it calls "active attacks" against Linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as "phalanx2" is installed,"

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Compromised SSH Keys Lead to Linux Rootkit Attack

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Mr. Cole's Axiom: The sum of the intelligence on the planet is a constant; the population is growing.

Compromised SSH Keys Lead to Linux Rootkit Attack More Login

Compromised SSH Keys Lead to Linux Rootkit Attack