Nowadays, the knowledge required to keep networks and systems well-protected, need to be regularly updated. A strong reason for that is that attackers are becoming more and more sophisticated, by using a wide diversity of ways to achieve an approach to a system or a network. All those working in the field, need to roll up their sleeves and be equipped with the proper background so that next time when a sensational attack is reported on the news, they won't consider themselves blessed that their company weren't the objective. However, no matter how much secured a system is, there will be a manner to crack it. We should take in consideration, that even if a system is not vulnerable today, it may be in danger at some point in the future. Setting "night terrors" apart, delightedly, there are only a few highly developed aggressors especially in our country, against which our defence will fail. In this paper, we introduce backdoors as a mean of gaining access to a specific technology. We put emphasis that backdoors aren't only used for dreadful purposes; those of the non-criminal category are used to help clients who are desperately outside of their devices or for damage assessment and dealing with software concerns. Also, we will demonstrate in Linux Ubuntu how to find hidden backdoors, by using a set of commands and tools. Finally, we will show a way how to stop a backdoor attack.
There are different types of backdoors that accomplish attacks when systems have vulnerabilities.
In [1], there are treated vulnerabilities of the authentication system and how attackers can establish malicious backdoors to bypass authentication logic. They describe three types of backdoors and propose their elimination. In [2], there are given some statistics about methods used by actors to hack and crack systems, and the result is that even one may say that backdoors are old, they are still one of the most used methods to gain unauthorized access in a system or network.
In the cybersecurity world, the backdoor is a method where unauthorized and authorized users have the capability to get security measures and earn the most important access level which is root access. So gaining this access on a software application, network or computer system is very dangerous because they can steal your personal data, financial information and install more and more malware to control everything they have hacked. Backdoor malwares are generally mentioned as a Trojan. A Trojan is a malicious computer program that acts to be something different for the purposes of delivering malware, stealing your data, or opening up a backdoor on your computer system. Much like the Trojan horse in Greece history, computer Trojans always contain a really bad surprise. Trojans sometimes have the ability to recreate themselves and spread to other computer systems without any additional commands from the cyber "criminal" who created them. An attacker can gain control of your computer using a backdoor to:
We chose to do our experiments in Ubuntu. Initially, we need to install Virtual Box in order to plant Ubuntu on it. We are using Ubuntu because it is userfriendly and is compatible with Debian packages.
To install Virtual Box first and foremost, Windows Installer must "live" in our system. ▪ With basic settings, Oracle VM VirtualBox will be planted for all customers on the regional device. [5] Setting Up Ubuntu on VirtualBox ▪ Open the just installed VirtualBox and choose New. At this moment new window will appear.
▪ Select the architecture (32 or 64 bit) and the guest OS.
▪ Apply the Base Memory (RAM) ▪ Hit "Next" until it displays the VM storage size. Decide how much space we need determined by our hard disk and finish the wizard by hitting thecreate button.
▪ Next on VirtualBox window, select "Start" and choose the "media source". In our situation, select the ".iso" on the desktop. ▪ Accomplish the installation.[6]
To conclude, security is an important topic and everyone should have some basic information in order to protect themselves from possible attacks. Remember that if your system is safe today it can be a target tomorrow. One of most popular ways even in 2020 are backdoors. We learned that backdoors are used from good guys and bad guys too. Through the sections of this paper we learned what backdoors are and how attackers use them to gain access over a computer. In the experimental section, we demonstrated a simple way how to detect hidden processes. Finally, we gave a solution what to do in case of a backdoor attack. We blocked traffic to prevent damage.