Cybersecurity researchers have disclosed details of a new Linux backdoor named PamDOORa that's being advertised on the Rehub Russian cybercrime forum for $1,600 by a threat actor called "darkworm." The backdoor is designed as a Pluggable Authentication Module (PAM)-based post-exploitation toolkit that enables persistent SSH access by means of a magic password and specific TCP port combination.

Send this story to anyone — or drop the embed into a blog post, Substack, Notion page. Every play sends rev-share back to The Hacker News.

𝕏 Post on X in Share on LinkedIn ✉ Email a friend

Heard via Storyflo

Get audio versions of every article you read.

Pick what matters — your audio curator gets you into your daily flo.

Join the listener waitlist