Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

In brief: Symantec has uncovered a backdoor self-replicating worm that targets websites running Apache Tomcat.

The worm (Java.Tomdep) affected Mac OS X, Linux and Solaris boxes. A Java Servlet executed on Apache Tomcat opened an IRC link to attacker servers based in Taiwan and Luxembourg.

The worm attempted to log in with weak usernames and passwords when another Tomcat server was detected.

Symantec said: "Aside from standard commands such as download, upload, creating new process, SOCKS proxy, UDP flooding, and updating itself; compromised computers can also scan for other Tomcat servers and send the malware to them."

"It is thus possible that DDoS attacks from the compromised servers are the attacker’s purpose."

NEXTDC to build AI campus and GPU "supercluster" in Sydney

WA makes its chief data officer permanent

Samsung tried to fix triple zero problem with mobiles nearly five years ago

Cochlear plugs AI into its global contact centre operations

Seqwater seeking asset planning tool to overcome "functional limitations"

Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

WA man jailed for at least five years for evil twin attack

Home Affairs to unleash AI on sensitive government data

Watt flags more fed insourcing after BoM website outrage

ASX outage caused by security software upgrade

Most popular tech stories

CBA finds its first chief AI officer

Virgin Australia, Wesfarmers strike OpenAI agreements

QBE backs leadership and startup culture to deliver transformation

Chemist Warehouse's AI tool for HR becoming a "standard pattern"

Charles Sturt University's new chatbot aims to be 'empathetic' 24/7

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Govt launches consumer tech label program for smart devices

Perth IoT vendor Digital Matter names new chief executive

Axis Communications opens experience centre in Sydney tech hub

NEXTDC to build AI campus and GPU "supercluster" in Sydney

WA makes its chief data officer permanent

Samsung tried to fix triple zero problem with mobiles nearly five years ago

Cochlear plugs AI into its global contact centre operations

Seqwater seeking asset planning tool to overcome "functional limitations"

Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

WA man jailed for at least five years for evil twin attack

Home Affairs to unleash AI on sensitive government data

Watt flags more fed insourcing after BoM website outrage

ASX outage caused by security software upgrade

Most popular tech stories

CBA finds its first chief AI officer

Virgin Australia, Wesfarmers strike OpenAI agreements

QBE backs leadership and startup culture to deliver transformation

Chemist Warehouse's AI tool for HR becoming a "standard pattern"

Charles Sturt University's new chatbot aims to be 'empathetic' 24/7

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Govt launches consumer tech label program for smart devices

Perth IoT vendor Digital Matter names new chief executive

Axis Communications opens experience centre in Sydney tech hub

Log In