An unknown threat actor is brute-forcing Linux SSH servers to install a wide range of malware, including the Tsunami DDoS (distributed denial of service) bot, ShellBot, log cleaners, privilege escalation tools, and an XMRig (Monero) coin miner.
  • bumbly
    31 year ago

    Use public key encryption logins only - no username password allowed.

    • Dan SimmonsOPAEnglish
      11 year ago

      I totally agree. It is one of the first steps I take. It is amazing how many systems are open to this sort of attack though.