Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

In brief: Symantec has uncovered a backdoor self-replicating worm that targets websites running Apache Tomcat.

The worm (Java.Tomdep) affected Mac OS X, Linux and Solaris boxes. A Java Servlet executed on Apache Tomcat opened an IRC link to attacker servers based in Taiwan and Luxembourg.

The worm attempted to log in with weak usernames and passwords when another Tomcat server was detected.

Symantec said: "Aside from standard commands such as download, upload, creating new process, SOCKS proxy, UDP flooding, and updating itself; compromised computers can also scan for other Tomcat servers and send the malware to them."

"It is thus possible that DDoS attacks from the compromised servers are the attacker’s purpose."

ANZ Banking Group finds AI chief

Telstra's AI bid to nip customer complaints in the bud

Compressing software lifecycles

Guzman y Gomez cooks up plan for agentic kitchens

Checkmarx-style supply chain attack hits password manager Bitwarden

Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

ANZ Banking Group names acting CISO

NSW Treasury staffer allegedly exfiltrated 5600 sensitive documents

Services Australia describes fraud, debt-related machine learning use cases

Cloud deployment firm Vercel breached, advises secrets rotation

Most popular tech stories

Westpac hires a chief AI innovation officer

Guzman y Gomez cooks up plan for agentic kitchens

TAL prioritises data and AI with "largest-ever technology deal"

ABC drops Salesforce for Braze

Home Affairs' chief digital officer is leaving

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Photos: Australian industry explores data for net zero

Telstra Purple acquires IoT specialists Alliance Automation, Aqura Technologies

Govt launches consumer tech label program for smart devices

ANZ Banking Group finds AI chief

Telstra's AI bid to nip customer complaints in the bud

Compressing software lifecycles

Guzman y Gomez cooks up plan for agentic kitchens

Checkmarx-style supply chain attack hits password manager Bitwarden

Backdoor worm owns Tomcat boxes

Logs in with weak credentials.

Add iTnews as your trusted source

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

ANZ Banking Group names acting CISO

NSW Treasury staffer allegedly exfiltrated 5600 sensitive documents

Services Australia describes fraud, debt-related machine learning use cases

Cloud deployment firm Vercel breached, advises secrets rotation

Most popular tech stories

Westpac hires a chief AI innovation officer

Guzman y Gomez cooks up plan for agentic kitchens

TAL prioritises data and AI with "largest-ever technology deal"

ABC drops Salesforce for Braze

Home Affairs' chief digital officer is leaving

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Photos: Australian industry explores data for net zero

Telstra Purple acquires IoT specialists Alliance Automation, Aqura Technologies

Govt launches consumer tech label program for smart devices

Log In