Wednesday, August 27, 2008

CERT: SSH Key-based Attacks

US-CERT is aware of active attacks against linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access.

read more | digg story

No comments: