Updated on 2022-12-02
AquaSec researchers have spotted a new malware strain named Redigo that is currently being used to attack and infect Redis database servers. Redigo is written in the Go programming language and leverages an exploit for the CVE-2022-0543 vulnerability to compromise unpatched Linux servers. AquaSec said Redigo-infected servers are being added to a botnet but that it’s unclear what these systems will be used for. Typical scenarios usually include cryptomining, DDoS attacks, or proxy networks. Read more: Aqua Nautilus Discovers Redigo — New Redis Backdoor Malware
Overview
Redigo, a new malware written in Go, was found exploiting a critical vulnerability in Redis servers to plant a backdoor and enable command execution. Read more: Aqua Nautilus Discovers Redigo — New Redis Backdoor Malware
