VERY IMPORTANT

Akamai Security Research has observed a new malware infecting their honeypot. They have dubbed KmsdBot. The botnet infects systems via an SSH connection that uses weak login credentials. It is written in Golang, an increasingly common language for attackers because of the difficulty of reverse engineering. The malware attacks using UDP, TCP, HTTP POST, and GET, along with a command and control infrastructure (C2), which communicates over TCP. The malware does not stay persistent on the infected system as a way of evading detection.