Poorly secured Redis servers impacted by new SkidMap malware variant

8 August 2023

Threat actors have been targeting poorly secured Redis servers with a new sophisticated SkidMap malware variant that could compromise various Linux distributions, including Alibaba, RedHat, Stream, Anolis, and openEuler, according to The Hacker News. Vulnerable Redis servers are being compromised with a dropper shell script that facilitates the deployment of a GIF file-spoofing ELF binary, which then prompts the inclusion of SSH keys to a root file while deactivating SELinux and downloading a proper package, a Trustwave report showed.

Source: SC Magazine

Date:

8 August 2023

Categorie(s):

NEWS

Tag(s):

Databases, NoSQL, Open Source, Open Source Databases, Open Source Software

Kaspersky hits back at claims it helped Russia develop military drone systems3 May 2024
Smoke and (screen) mirrors: A strange signed backdoor3 May 2024
Kaspersky accused of helping Russia develop military drone systems3 May 2024
Attackers evade detection by leveraging Microsoft Graph API3 May 2024
Microsoft details broad plan to enhance its cybersecurity practices3 May 2024