SSHDkit
Description
This indicates the detection of SSHD rootkit which is a Trojan and attempts to steal credentials and public-private keys from targeted systems.
Affected Products
Any unprotected Linux system is vulnerable to the attack.
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
This signature's action can be set to "Block" to protect against this threat.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |