21CTO

Dec 3, 2022 · Information Security

How Redigo Malware Exploits Redis CVE-2022-0543 to Plant Stealthy Backdoors

Redigo, a Go‑based malware discovered by AquaSec, continuously scans for unpatched Redis servers vulnerable to CVE‑2022‑0543, uses Redis commands to load a malicious module that creates a hidden backdoor for arbitrary command execution, gathers system data, and may enlist the host in DDoS or crypto‑mining botnets.