Threat actors linked to China have maintained a hidden presence inside a highly secure critical infrastructure network for nearly a decade. Tracked by Sygnia as Velvet Ant, the group orchestrated an elaborate campaign dubbed Operation Highland to infiltrate an environment with no direct internet access. Forensic artifacts from the incident reveal an undetected network presence […]
The post Hackers Backdoor pam_unix.so and OpenSSH Binaries to Steal Credentials and Bypass Authentication appeared first on Cyber Security News.