Linux maintainers were infected for 2 years by SSH-dwelling backdoor with massive reach

Linux maintainers were infected for 2 years by SSH-dwelling backdoor with massive reach

Briefly

Sophisticated malware infected kernel.org servers from 2009-2011, compromising user credentials and enabling spam and malicious activities.

arstechnica.comhttps://arstechnica.com/security/2024/05/ssh-backdoor-has-infected-400000-linux-servers-over-15-years-and-keeps-on-spreading/

Attackers obtained cryptographic hashes for 551 user accounts on kernel.org, converting half into plaintext passwords using password-cracking techniques.

arstechnica.comhttps://arstechnica.com/security/2024/05/ssh-backdoor-has-infected-400000-linux-servers-over-15-years-and-keeps-on-spreading/

Infection revealed in 2011 compromised 448 accounts with root system access, and the public understanding remains limited due to lack of detailed disclosure.

arstechnica.comhttps://arstechnica.com/security/2024/05/ssh-backdoor-has-infected-400000-linux-servers-over-15-years-and-keeps-on-spreading/