Exploited SSH Servers Offered in the Dark web as Proxy Pools


Researchers at Aqua Nautilus have given more insight on a long-standing threat to SSH in the cloud. Specifically, the threat actor used our SSH server as a slave proxy and routed traffic via it. This blog will describe the threat, show how attackers exploit SSH, what actions they take once they have initial access, and the repercussions of these assaults on organizations and businesses.

SSH tunneling is a technology that allows data to travel safely over an untrusted network by establishing secure and encrypted network connections between two servers. Its major function is to provide a secure communication channel between a local and distant host that may subsequently be used to tunnel various network protocols and services.

Read More…