Ausnahme gefangen: SSL certificate problem: certificate is not yet valid ๐Ÿ“Œ The amazingly scary xz sshd backdoor, (Mon, Apr 1st)

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š The amazingly scary xz sshd backdoor, (Mon, Apr 1st)


๐Ÿ’ก Newskategorie: IT Security
๐Ÿ”— Quelle: isc.sans.edu

Unless you took the whole weekend off, you must have seen by now that Andres Freund published an amazing discovery on Friday on the Openwall mailing list (https://www.openwall.com/lists/oss-security/2024/03/29/4).
The whole story around this is both fascinating and scary รขย€ย“ and I'm sure will be told around numerous time, so in this diary I will put some technical things about the backdoor that I reversed for quite some time (and I have a feeling I could spend 2 more weeks on this).
There is also a nice gist by smx-smx here that gets updated regularly so keep an eye there as well.
The author(s) of the backdoor went a long way to make the backdoor look as innocent as possible. This is also why all the reversing effort is taking such a long(er) time. Let's take a look at couple of fascinating things in this backdoor.

...



๐Ÿ“Œ The amazingly scary xz sshd backdoor, (Mon, Apr 1st)


๐Ÿ“ˆ 114.63 Punkte

๐Ÿ“Œ ISC Stormcast For Monday, April 1st, 2024 https://isc.sans.edu/podcastdetail/8918, (Mon, Apr 1st)


๐Ÿ“ˆ 57.3 Punkte

๐Ÿ“Œ The xz-utils backdoor in security advisories by national CSIRTs, (Mon, Apr 1st)


๐Ÿ“ˆ 50.05 Punkte

๐Ÿ“Œ ISC Stormcast For Wednesday, April 1st 2020 https://isc.sans.edu/podcastdetail.html?id=6934, (Wed, Apr 1st)


๐Ÿ“ˆ 45.69 Punkte

๐Ÿ“Œ ISC Stormcast For Thursday, April 1st, 2021 https://isc.sans.edu/podcastdetail.html?id=7438, (Thu, Apr 1st)


๐Ÿ“ˆ 45.69 Punkte

๐Ÿ“Œ SSHD-Poison - A Tool To Get Creds Of Pam Based SSHD Authentication


๐Ÿ“ˆ 42.87 Punkte

๐Ÿ“Œ SSHD-Poison - A Tool To Get Creds Of Pam Based SSHD Authentication


๐Ÿ“ˆ 42.87 Punkte

๐Ÿ“Œ ISC Stormcast For Monday, June 1st 2020 https://isc.sans.edu/podcastdetail.html?id=7018, (Mon, Jun 1st)


๐Ÿ“ˆ 42.82 Punkte

๐Ÿ“Œ ISC Stormcast For Monday, February 1st, 2021 https://isc.sans.edu/podcastdetail.html?id=7352, (Mon, Feb 1st)


๐Ÿ“ˆ 42.82 Punkte

๐Ÿ“Œ ISC Stormcast For Monday, March 1st, 2021 https://isc.sans.edu/podcastdetail.html?id=7392, (Mon, Mar 1st)


๐Ÿ“ˆ 42.82 Punkte

๐Ÿ“Œ ISC Stormcast For Monday, August 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8110, (Mon, Aug 1st)


๐Ÿ“ˆ 42.82 Punkte

๐Ÿ“Œ ISC Stormcast For Friday, November 1st 2019 https://isc.sans.edu/podcastdetail.html?id=6734, (Fri, Nov 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Friday, May 1st 2020 https://isc.sans.edu/podcastdetail.html?id=6978, (Fri, May 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Wednesday, July 1st 2020 https://isc.sans.edu/podcastdetail.html?id=7062, (Wed, Jul 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Tuesday, September 1st 2020 https://isc.sans.edu/podcastdetail.html?id=7148, (Tue, Sep 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Thursday, October 1st 2020 https://isc.sans.edu/podcastdetail.html?id=7190, (Thu, Oct 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Tuesday, December 1st 2020 https://isc.sans.edu/podcastdetail.html?id=7272, (Tue, Dec 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Tuesday, June 1st, 2021 https://isc.sans.edu/podcastdetail.html?id=7522, (Tue, Jun 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Thursday, July 1st, 2021 https://isc.sans.edu/podcastdetail.html?id=7566, (Thu, Jul 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Sunday, August 1st, 2021 https://isc.sans.edu/podcastdetail.html?id=7610, (Sun, Aug 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Wednesday, June 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8030, (Wed, Jun 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Friday, July 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8072, (Fri, Jul 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Thursday, September 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8156, (Thu, Sep 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Tuesday, November 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8238, (Tue, Nov 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Thursday, December 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8272, (Thu, Dec 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Wednesday, March 1st, 2023 https://isc.sans.edu/podcastdetail.html?id=8390, (Wed, Mar 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Wednesday, November 1st, 2023 https://isc.sans.edu/podcastdetail/8726, (Wed, Nov 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Friday, December 1st, 2023 https://isc.sans.edu/podcastdetail/8760, (Fri, Dec 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Thursday, February 1st, 2024 https://isc.sans.edu/podcastdetail/8834, (Thu, Feb 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ ISC Stormcast For Friday, March 1st, 2024 https://isc.sans.edu/podcastdetail/8876, (Fri, Mar 1st)


๐Ÿ“ˆ 31.21 Punkte

๐Ÿ“Œ Qakbot malspam sent from an infected Windows host, (Wed, Apr 1st)


๐Ÿ“ˆ 30.09 Punkte

๐Ÿ“Œ April 2021 Forensic Quiz, (Thu, Apr 1st)


๐Ÿ“ˆ 30.09 Punkte

๐Ÿ“Œ Apr 17 โ€“ Apr 23 Ukraine โ€“ Russia the silent cyber conflict


๐Ÿ“ˆ 28.97 Punkte

๐Ÿ“Œ Apr 24 โ€“ Apr 30 Ukraine โ€“ Russia the silent cyber conflict


๐Ÿ“ˆ 28.97 Punkte











matomo