China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system itself.

Sygnia, which tracks the group as Velvet Ant, says it backdoored the PAM and OpenSSH components that decide who is allowed to sign in, planting its access where ordinary cleanup could not reach it. The network it targeted had no

Source: The Hacker News

Tags:

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

The Onboarding Password Mistake That Creates Unnecessary Risk

The Onboarding Password Mistake That Creates Unnecessary Risk Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permissions, and passwords, all delivered within a

Read More

TinyWind: A pixel pirate sailing game with real wind physics (380k+ kms sailed)

TinyWind: A pixel pirate sailing game with real wind physics (380k+ kms sailed) Source: Hacker News

Read More

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit Read on The Hacker News Source: The Hacker News

Read More