Slashdot Mirror


Compromised SSH Keys Lead To Linux Rootkit Attack

Tech Groupie writes "The US Computer Emergency Readiness Team (CERT) has issued a warning for what it calls 'active attacks' against Linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as 'phalanx2' is installed."

1 of 79 comments (clear)

  1. Re:As usual... by Anonymous Coward · · Score: -1, Flamebait

    Or switch to a real operating system. Solaris or *BSD.