https://www.elastic.co/docs/reference/security/prebuilt-rules/rules/linux/persistence_suspicious_ssh_execution_xzbackdoor
Potential Execution via SSH Backdoor | Prebuilt detection rules reference
It identifies potential malicious shell executions through remote SSH and detects cases where the sshd service suddenly terminates soon after successful...
ssh backdoordetection rulespotentialexecutionvia
https://www.openwall.com/lists/oss-security/2024/03/29/4?ref=thestack.technology
oss-security - backdoor in upstream xz/liblzma leading to ssh server compromise
https://www.tomshardware.com/tech-industry/cyber-security/9-000-asus-routers-compromised-by-botnet-attack-and-persistent-ssh-backdoor-that-even-firmware-updates-cant-fix
9,000 Asus routers compromised by botnet attack and persistent SSH backdoor that even firmware...
May 29, 2025 - The backdoor evades detection and survives firmware updates
https://www.openwall.com/lists/oss-security/2024/03/30/37
oss-security - Re: backdoor in upstream xz/liblzma leading to ssh server compromise
https://www.openwall.com/lists/oss-security/2024/03/29/24
oss-security - Re: backdoor in upstream xz/liblzma leading to ssh server compromise
https://www.openwall.com/lists/oss-security/2024/04/17/7
oss-security - Re: backdoor in upstream xz/liblzma leading to ssh server compromise
https://www.openwall.com/lists/oss-security/2024/03/30/27
oss-security - Re: backdoor in upstream xz/liblzma leading to ssh server compromise
https://www.openwall.com/lists/oss-security/2024/03/29/4?ref=connortumbleson.com
oss-security - backdoor in upstream xz/liblzma leading to ssh server compromise