Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

New Chaos Linux Backdoor Is Pretty Stealthy

Backdoor-640x380

A stealthy backdoor undetected byantimalware providers is giving unknown attackers complete control over at least 100 Linux servers that appear to be used in business production environments, warn researchers.

In a blog post published Wednesday, Montreal-based GeoSecure claimed that a piece of malware dubbed "Chaos" is infecting poorly secured systems by guessing weak passwords protecting secure shell application administrators use to remotely control Unix-based computers. Normally, firewalls in front of servers block such backdoors from communicating with the outside Internet. Chaos bypasses those protections by using what's known as a "raw socket" to covertly monitor all data sent over the network.

"With Chaos using a raw socket, the backdoor can be triggered on ports running an existing legitimate service," Sebastian Feldmann, a master's degree student intern working for GoSecure, wrote. "As an example, a Webserver that would only expose SSH (22), HTTP (80), and HTTPS...(continued)

View All Trending Stories