NCSC Details ‘Pygmy Goat’ Backdoor Planted on Hacked Sophos Firewall Devices

NCSC Details ‘Pygmy Goat’ Backdoor Planted on Hacked Sophos Firewall Devices

November 1, 2024 at 10:45AM

The NCSC reported a stealthy backdoor, dubbed ‘Pygmy Goat,’ discovered on compromised Sophos XG firewall devices. This malware is designed to operate on a wider variety of Linux-based devices, raising security concerns regarding its potential impact on broader systems.

**Meeting Notes Takeaways:**

1. **Discovery of a Backdoor**: A stealthy network backdoor, referred to as ‘Pygmy Goat,’ has been discovered on hacked Sophos XG firewall devices.

2. **Broader Impact**: The backdoor is designed to function on a wider array of Linux-based devices, indicating a potential larger security threat beyond just the Sophos devices.

3. **Source of Information**: The details about this backdoor were released by the National Cyber Security Centre (NCSC) and reported on SecurityWeek.

4. **Action Item**: Teams should review firewall security and monitor for any unusual activity related to this specific threat to mitigate risks associated with the backdoor.

Full Article