New ‘Plague’ PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft

Threat Score:
57
The Hacker News
23 hours ago

Overview

Cybersecurity researchers have flagged a previously undocumented Linux backdoor dubbedPlaguethat has managed to evade detection for a year. "The implant is built as a maliciousPAM(Pluggable Authentication Module), enabling attackers to silently bypass system authentication and gain persistent SSH access," Nextron Systems researcher Pierre-Henri Peziersaid. Pluggable Authentication Modules refers to a suite of shared libraries used to manage user authentication to applications and services in Lin...

Related Articles

5 articles
1

Cyber Crisis Unfolding: PH ransomware cases double, as reported by Viettel Cyber Security - Manila Standard

News 2 hours ago

EnglishUnited States Deutsch English Español Français Italiano العربية All languages Afrikaans azərbaycan bosanski català Čeština Cymraeg Dansk Deutsch eesti EnglishUnited Kingdom EspañolEspaña EspañolLatinoamérica euskara Filipino FrançaisCanada FrançaisFrance Gaeilge galego Hrvatski Indonesia isiZulu íslenska Italiano Kiswahili latviešu lietuvių magyar Melayu Nederlands norsk o‘zbek polski PortuguêsBrasil PortuguêsPortugal română shqip Slovenčina slovenščina srpski (latinica) Suomi Svenska Tiế

Score
82
Read more
2

Semperis 2025 Ransomware Study Highlights Persistence of Cyber Threats and Evolving Tactics - Israel Defense

News 7 hours ago

EnglishUnited States Deutsch English Español Français Italiano العربية All languages Afrikaans azərbaycan bosanski català Čeština Cymraeg Dansk Deutsch eesti EnglishUnited Kingdom EspañolEspaña EspañolLatinoamérica euskara Filipino FrançaisCanada FrançaisFrance Gaeilge galego Hrvatski Indonesia isiZulu íslenska Italiano Kiswahili latviešu lietuvių magyar Melayu Nederlands norsk o‘zbek polski PortuguêsBrasil PortuguêsPortugal română shqip Slovenčina slovenščina srpski (latinica) Suomi Svenska Tiế

Score
82
Read more
3

Traditional backup strategies are no longer sufficient to guarantee business continuity. Sophisticated cyberattacks, particularly ransomware, have evolved beyond merely encrypting or deleting primary data. Attackers now meticulously target the very systems d - LinkedIn

News 14 hours ago

EnglishUnited States Deutsch English Español Français Italiano العربية All languages Afrikaans azərbaycan bosanski català Čeština Cymraeg Dansk Deutsch eesti EnglishUnited Kingdom EspañolEspaña EspañolLatinoamérica euskara Filipino FrançaisCanada FrançaisFrance Gaeilge galego Hrvatski Indonesia isiZulu íslenska Italiano Kiswahili latviešu lietuvių magyar Melayu Nederlands norsk o‘zbek polski PortuguêsBrasil PortuguêsPortugal română shqip Slovenčina slovenščina srpski (latinica) Suomi Svenska Tiế

Score
74
Read more
4

Security Affairs newsletter Round 535 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs 3 hours ago

A new round of the weekly Security Affairs has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs , including the international press. New Linux backdoor Plague bypasses auth via malicious PAM module China Presses Nvidia Over Alleged Backdoors […]

Score
73
Read more
5

New Linux backdoor Plague bypasses auth via malicious PAM module

Security Affairs 13 hours ago

A stealthy Linux backdoor named Plague, hidden as a malicious PAM module, allows attackers to bypass auth and maintain persistent SSH access. Nextron Systems researchers discovered a new stealthy Linux backdoor called Plague, hidden as a malicious PAM (Pluggable Authentication Module) module. It silently bypasses authentication and grants persistent SSH access. A Pluggable Authentication Module […]

Score
73
Read more