Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

In brief: Symantec has uncovered a backdoor self-replicating worm that targets websites running Apache Tomcat.

The worm (Java.Tomdep) affected Mac OS X, Linux and Solaris boxes. A Java Servlet executed on Apache Tomcat opened an IRC link to attacker servers based in Taiwan and Luxembourg.

The worm attempted to log in with weak usernames and passwords when another Tomcat server was detected.

Symantec said: "Aside from standard commands such as download, upload, creating new process, SOCKS proxy, UDP flooding, and updating itself; compromised computers can also scan for other Tomcat servers and send the malware to them."

"It is thus possible that DDoS attacks from the compromised servers are the attacker’s purpose."

AEC tasks Accenture with $30m election donation system

Singapore to invest over $1.1 billion in public AI research

'Jobs, jobs, jobs' the AI mantra in Davos

Australian Public Service plans whole-of-gov "learning technology ecosystem"

Fintech Airwallex to be audited by AUSTRAC

Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

Microsoft releases fix for flawed January security update

Starlink faces high-profile security test in Iran crackdown

Single Windows image drove RedVDS disposable cybercrime server business

Microsoft patches single-click Copilot data stealing attack

Most popular tech stories

Macquarie Bank unveils customer-facing 'Q' AI agent

Dept of Industry reviews its extended ERP stack

Eightfold sued for helping companies secretly score job seekers

State of HR Tech

Woolworths to incorporate agentic AI into its Olive chatbot

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Photos: IoT Impact 2023 brings together data-enabled productivity, sustainability and trust opportunities

Blackberry celebrates "giant step forward"

Govt launches consumer tech label program for smart devices

Perth IoT vendor Digital Matter names new chief executive

Photos: Australian industry explores data for net zero

AEC tasks Accenture with $30m election donation system

Singapore to invest over $1.1 billion in public AI research

'Jobs, jobs, jobs' the AI mantra in Davos

Australian Public Service plans whole-of-gov "learning technology ecosystem"

Fintech Airwallex to be audited by AUSTRAC

Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

Microsoft releases fix for flawed January security update

Starlink faces high-profile security test in Iran crackdown

Single Windows image drove RedVDS disposable cybercrime server business

Microsoft patches single-click Copilot data stealing attack

Most popular tech stories

Macquarie Bank unveils customer-facing 'Q' AI agent

Dept of Industry reviews its extended ERP stack

Eightfold sued for helping companies secretly score job seekers

State of HR Tech

Woolworths to incorporate agentic AI into its Olive chatbot

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Photos: IoT Impact 2023 brings together data-enabled productivity, sustainability and trust opportunities

Blackberry celebrates "giant step forward"

Govt launches consumer tech label program for smart devices

Perth IoT vendor Digital Matter names new chief executive

Photos: Australian industry explores data for net zero

Log In