Chinese Hackers Target Linux Devices with New SSH Backdoor
February 5, 2025
https://cyberpress.org/chinese-hackers-target-linux-devices/
| Notes |
|---|
| Linux malware |
| SSH malware |
| Daggerfly Evasive Panda |
| cyberespionage |
| sshdinjector |
| persistence |
| IoT |
| network appliances |
| supply chain attack |
| targets Asia and United States |
| dropper |
| root user |
| libsshd.so |
| backdoor |
| command and control |
| overwrites netstat, ls, and crond |
| exfiltrates MAC address, credentials, and system logs |
| RCE |
| c2 uses custom protocol |
| Chinese phrases for laughter found in samples: heihei xixi |
| ELF |