Learn about Linux
Download Linux
Get Linux helpSpecial Offers
Newsvac
SSH Key-based Attacks
August 27, 2008 (10:00:00 PM) - 3 months, 1 week ago
Share
Print
Comments
US-CERT is aware of active attacks against linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as "phalanx2" is installed.
Read more at: us-cert.gov
