Legion hacker, a commercial malware tool, has widened its scope in targeting cloud services and can now compromise SSH servers and steal additional AWS-specific credentials, according to security firm Cado Security.
The tool's main goal is to harvest credentials and store configuration files.
Attackers can also hijack resources and launch mass email and SMS campaigns, primarily through hijacked Simple Mail Transfer Protocol (SMTP) credentials. The tool also attempts to brute-force credentials to gain access to databases and web host administration panels.
Share with your friends and followers
Start blogging about your favorite technologies, reach more readers and earn rewards!
Join other developers and claim your FAUN account now!
Only registered users can post comments. Please, login or signup.