{ads}

New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials

Written By Friday, 8 May 2026 Add Comment



May 8, 2026 at 02:11PM

Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that's being advertised on the Rehub Russian cybercrime forum for $1,600 by a threat actor called "darkworm." The backdoor is designed as a Pluggable Authentication Module (PAM)-based post-exploitation toolkit that enables persistent SSH access by means of a magic password and specific TCP port combination.

from The Hacker News https://ift.tt/B4mYhXe

0 Response to "New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads