Another Bot Infection from Common Password Use- “Finding Neutrino”

Kirill Shipulin from Positive Technologies wrote up some very good research he did on a Neutrino infection of one of his honeypots. The article can be found here and is well worth the read.

For me, the biggest take-away was once again a Bot infected a system- this time a LAMP stack- using only the 500 passwords in the payload’s wordlist. We see this way to much.