A dangerous Linux backdoor Chaos that targeting improperly Secured Linux systems by using fully encrypted and integrity checked reverse shell.
Hackers performing SSH brute-force attacks on Linux systems that secured by weak password and executing the Chaos Backdoor.
Chaos Backdoor was part of the ???sebd??? rootkit that was active around 2013 and now it is discovered via Honeypot system.
Initially, attackers compromised one of the honeypot systems by brute-forcing SSH credentials using Tor network.