Cyber Security

New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials

New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials
Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that's being advertised on the Rehub Russian cybercrime forum for $1,600 by a threat actor called "darkworm." The backdoor is designed as a Pluggable Authentication Module (PAM)-based post-exploitation toolkit that enables persistent SSH access by means of a magic password and specific TCP port combination.
Read More

Related Posts

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

Linux Kernel Dirty Frag LPE Exploit Enables Root Access...

Mental health apps are collecting more than emotional conversations

Mental health apps are collecting more than emotional c...

OpenAI tunes GPT-5.5-Cyber for more permissive security workflows

OpenAI tunes GPT-5.5-Cyber for more permissive security...

Securonix launches AI threat research agent and ThreatWatch validation tool

Securonix launches AI threat research agent and ThreatW...

After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets

After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud...

Your coworker might be selling company logins, and thinks it’s fine

Your coworker might be selling company logins, and thin...