Compromised SSH Keys Lead To Linux Rootkit Attack

Tech Groupie writes "The US Computer Emergency Readiness Team (CERT) has issued a warning for what it calls 'active attacks' against Linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as 'phalanx2' is installed."

Read more of this story at Slashdot.

Read More...

[Source: Slashdot: Linux - Posted by FreeAutoBlogger]