A：SSHStalker通过暴力破解弱SSH密码登录认证来攻陷防护不当的Linux服务器。它会扫描22端口寻找具有无保护SSH的服务器，然后利用2009年以来的各种Linux内核漏洞进行攻击。攻击成功后，会创建后门并安装各种恶意软件组件。

Researchers uncover SSHStalker, an IRC botnet exploiting legacy Linux flaws and SSH servers to build persistent covert access.

The SSHStalker Linux botnet has ensnared 7,000 systems, deploying various scanners and malware, an IRC bot, and multiple kernel exploits.

Hackers resurrect 90s IRC tricks with SSHStalker, using old exploits to quietly compromise thousands of Linux servers ...

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login ...

A novel Go-based Linux botnet, dubbed "PumaBot," has been observed targeting Internet of Things (IoT) devices. PumaBot differentiates itself from typical botnets by remotely retrieving a list of ...

A newly documented Linux botnet named SSHStalker is using the IRC (Internet Relay Chat) communication protocol for command-and-control (C2) operations.

A new report out today from Fortinet Inc.’s FortiGuard Labs details the activities of two different botnets observed through October and November that are being spread through vulnerabilities in ...