The officially official Devuan Forum!

You are not logged in.

#1 2021-05-02 18:20:34

andyprough
Member
Registered: 2019-10-19
Posts: 65  

RotaJakiro backdoor that's been found in some systemd packages

Anyone read the news on this RotaJakiro backdoor that was just discovered? It was found in 3 systemd-daemon packages:
https://blog.netlab.360.com/stealth_rot … ckdoor_en/

Sounds like it was very secretive, using rotating encryption to avoid detection. Might be the product of some state-sponsored hackery.

Here's a news writeup from TheRegister: https://www.theregister.com/2021/04/29/ … e_spotted/


Primary Computer - Commodore 64: Processor - MOS 6510/8500, 1.023MHz; Memory - 64kb RAM, 20kB ROM - 8k BASIC V2, 8k Kernel, 4k Character ROM; Display output - 320x200, 16 colours; OS - BASIC V2.0; Weight: 1.8kg

Offline

#2 2021-05-02 18:26:00

andyprough
Member
Registered: 2019-10-19
Posts: 65  

Re: RotaJakiro backdoor that's been found in some systemd packages

Better writeup here in SecurityWeek: https://www.securityweek.com/stealthy-r … ux-systems

"C2" in the article refers to "command and control servers".


Primary Computer - Commodore 64: Processor - MOS 6510/8500, 1.023MHz; Memory - 64kb RAM, 20kB ROM - 8k BASIC V2, 8k Kernel, 4k Character ROM; Display output - 320x200, 16 colours; OS - BASIC V2.0; Weight: 1.8kg

Offline

Board footer