Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Wikileaks Unveils CIA Implants that Steal SSH Credentials from Windows & Linux PCs
#1
[Image: wikileaks-cia-ssh-hacking-tool.png]

WikiLeaks has today published the 15th batch of its ongoing Vault 7 leak, this time detailing two alleged CIA implants that allowed the agency to intercept and exfiltrate SSH (Secure Shell) credentials from targeted Windows and Linux operating systems using different attack vectors.

Secure Shell or SSH is a cryptographic network protocol used for remote login to machines and servers securely over an unsecured network.

Dubbed BothanSpy — implant for Microsoft Windows Xshell client, and Gyrfalcon — targets the OpenSSH client on various distributions of Linux OS, including CentOS, Debian, RHEL (Red Hat), openSUSE and Ubuntu.


Both implants steal user credentials for all active SSH sessions and then sends them to a CIA-controlled server.

Full Article
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Bitdefender Unveils New Brand Essence: Trusted. Always. mrtrout 0 395 05-29-2023 , 01:34 AM
Last Post: mrtrout
  Avira Unveils Extended Features with Avira Crypto, Game Booster and Breach Monitor mrtrout 0 625 10-29-2021 , 01:50 AM
Last Post: mrtrout
  Google funds Linux maintainers to boost Linux kernel security Bjyda 0 847 02-24-2021 , 11:39 PM
Last Post: Bjyda
  Fraudsters Using Telegram API to Harvest Credentials Bjyda 0 848 02-23-2021 , 11:25 PM
Last Post: Bjyda
  Compromised Credentials Show That Abuse Happens in Multiple Phases Bjyda 0 940 02-17-2021 , 09:55 PM
Last Post: Bjyda

Forum Jump:


Users browsing this thread: 1 Guest(s)