AttackFeed by Joe Wagner | Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor  - The Hacker News

Malicious Go Crypto Module Steals Passwords, Deploys Rekoobe Backdoor  – The Hacker News

Posted on By [email protected] (The Hacker News)
Attack Feeds

Cybersecurity researchers have disclosed details of a malicious Go module that’s designed to harvest passwords, create persistent access via SSH, and deliver a Linux backdoor named Rekoobe.
The Go module, github[.]com/xinfeisoft/crypto, impersonates the legitimate “golang.org/x/crypto” codebase, but injects malicious code that’s responsible for exfiltrating secrets entered via terminal password  –

Read More  – The Hacker News 

You may also like

Attack Feeds
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More  – The Hacker News
May 28, 2026
AttackFeed by Joe Wagner | New Mirai Variant Nexcorium Hijacks DVR Devices for DDoS Attacks  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
New Mirai Variant Nexcorium Hijacks DVR Devices for DDoS Attacks  – Hackread – Cybersecurity News, Data Breaches, AI and More
April 17, 2026
AttackFeed by Joe Wagner | The FBI’s cyber chief is using Winter SHIELD to accelerate China prep, threat intelligence sharing  - CyberScoop
Attack Feeds
The FBI’s cyber chief is using Winter SHIELD to accelerate China prep, threat intelligence sharing  – CyberScoop
March 2, 2026
AttackFeed by Joe Wagner | Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover  - The Hacker News
Attack Feeds
Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover  – The Hacker News
April 28, 2026