"Cybercriminals Weaponizing Open-Source SSH-Snake Tool for Network Attacks"
Threat actors have repurposed SSH-Snake, a recently open-sourced network mapping tool, to perform malicious activities. SSH-Snake is a self-modifying worm that uses SSH credentials found on a compromised system to spread itself across the network. The worm searches known credential locations and shell history files to determine its next step. It was first released on GitHub in early January 2024, and its developer describes it as a "powerful tool" for automatically traversing networks using SSH private keys discovered on systems. This article continues to discuss the weaponization of the SSH-Snake tool by threat actors.
THN reports "Cybercriminals Weaponizing Open-Source SSH-Snake Tool for Network Attacks"
Submitted by grigby1
Submitted by grigby1 CPVI
on