New 'Plague' PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft
The implant is built as a malicious PAM (Pluggable Authentication Module), enabling attackers to silently bypass system authentication and gain persistent SSH access.
Devices exposed to remote hacking via Erlang/OTP SSH vulnerability
Erlang/OTP's SSH implementation has a critical vulnerability allowing remote code execution without authentication, requiring urgent attention and action from security teams.