Hacking activity reported on Linux boxes
Further to our report of the Weekend's Windows attacks, DMXzone author Gareth Downes-Powell wrote:
Doesn`t seem just confined to windows machines. Our main server was hacked into on Saturday, luckily I logged in 15 minutes after the intruder and noticed them there. They then kicked me off and shut down telnet etc so I supposedly couldn`t log back in. Luckily I keep a hidden copy of ssh running so I was able to login and kick them out, and I stopped the software they were installing midflow.
Our main server is a linux box, and the intruder was setting it up as a springboard to get into other machines. Other people on the same networks also experienced a rise in attempted breakins etc.
Just wanted to let you know of my recent experience :-) Unfortunately cost me most of saturday to reverse the hackers changes. It wasn`t the usual run of the mill script kiddie either, someone running a little-known root kit which isn`t very common on the net.
The important thing for me was the machine stayed online throughout and I didn`t lose any data.
I normally take the hacking warnings with a pinch of salt, as they're usually hyped out of proportion and are nowhere near as bad as described. This time though I can't help feeling that theres something stirring out in cyberspace....
Comments
Be the first to write a comment
You must me logged in to write a comment.