Malicious Go Module Masquerading as SSH Brute-Force Tool Steals Login Credentials via Telegram

Sunday, 11 January

Monday, 25 August, 2025

Malicious Go Module Masquerading as SSH Brute-Force Tool Steals Login Credentials via Telegram

Security researchers have uncovered a deceptive Go module named “golang-random-ip-ssh-bruteforce” that masquerades as an SSH brute-force scanner. Once a login succeeds, it stealthily sends the target IP, username, and password to a malicious Telegram bot. It bypasses host key checks, attempts high-concurrency brute-forcing using common credentials (e.g., root, admin, 12345678), and relays results to the attacker via Telegram—evading detection and exploiting unwitting operators.

Read full story at The Hacker News

Tags:malicious attacker Telegram bot

Download the TechShots App

IT Trends Move Fast. Stay Faster.

Android iOS

Categories

Malicious Go Module Masquerading as SSH Brute-Force Tool Steals Login Credentials via Telegram

Also Read

India’s Data Center Market Set to Hit 4 GW Capacity by 2030

Indian Army Bolsters Surveillance With Strategic Order

Lenovo Aims to Transform India Into a Global Export Hub for AI Servers

Sony’s New AI "Ghost Player" Feature Could Help Gamers Beat Tough Boss Fights

Betterment Alerts Users After Fraudulent Notifications Target Crypto Accounts

India Not Satisfied as Elon Musk’s X Limits Grok AI Image Generation to Paid Users

Tamil Nadu’s iTNT Hub Partners With XeedQ GmbH to Boost Quantum Computing

FCC Greenlights SpaceX Expansion: 7,500 Additional Starlink Satellites Approved

Google Spinout SandboxAQ Accuses Former Executive of Multi-Million Dollar Extortion

Download the TechShots App

Subscribe To Our Newsletter.