Linux Undergoes SSH Key-Based Attacks
US-CERT has alerted Linux users of a foray against linux-based computing infrastructures using compromised SSH keys. The breach uses stolen SSH keys to obtain access to a system, and then uses local kernel exploits to gain root access. Once root access has been acquired, a rootkit known as "phalanx2" is installed. Phalanx2 is a derivative of an older rootkit "phalanx". It is configured to methodically steal SSH keys from the compromised system. The SSH keys are then sent to the attackers, who use them to attack other sites and systems.
US-CERT recommends using keys with passphrases and reviewing server logs to identify unknown accessed from remote machines to avoid such attack. Should you find your system already compromised, immediately contact your IT support for further assistance.
People who read this article also read...
Beware of "Verizon Scam"
Verizon, American broadband and telecommunications company, has announced that it is being used in a scam that offers $750,000 to consumers. The nature of the scam is q... More »
Acer Retrenches After Merger
Taiwan-based PC maker, Acer, has retrenched 30 and 40 jobs after the merger of its enterprise and client computing groups into one product division. Acer head of business pr... More »
AOL Phisher Sentenced to Seven Years
Michael Dolan, a resident of Connecticut, has been sentenced to seven years in prison for perpetrating a phishing scheme that targeted AOL users in four years. Last Wednesday, Dola... More »
Justice Department to File Antitrust Claim Against Google
The US Justice Department has employed the services of former Disney vice chairman Sanford Litvack to prepare charges on antitrust against Google. US lawyers have been deposing... More »
HP to Cut Wages to Save Jobs
HP has announced it will be doing salary cutbacks as a way of to save cost instead of slashing its workforce. The computer company will be cutting wages by 5 percent across the bo... More »
