Redigo Backdoor Malware Targets Redis Servers
The Redigo backdoor is written in the Go programming language and targets Redis servers vulnerable to a Lua scripting engine defect.
The flaw is classified under CVE-2022-0543 and allows the remote attacker to execute arbitrary commands.
The threat actor behind the attack attempted to hide communication by sending data from the malware to command-and-control servers over Redis port 6379.
Featured Resources
blog
Task Scheduler– New Vulnerabilities for schtasks.exe
Introduction The schtasks.exe binary is a core component of the Task Scheduler Service in Windows, enabling users to schedule and
Solution Brief
Detection Engineering
Early Detection is Critical to Stopping Cyber Attacks Threat actors often move across IT networks and cloud environments, evolving tactics
blog
Path Traversal Vulnerability in AWS SSM Agent's Plugin ID Validation
Introduction The AWS Systems Manager (SSM) Agent is a core component of Amazon Web Services management and automation capabilities, enabling