badger.foo passes on the report of Peter N. M. Hansteen that a third round of low-intensity, distributed brute-force attacks
is now in progress — we earlier discussed the first
rounds — and that sloppy admin practice on Linux systems is the main enabler. As before, the article links to log data (this time 770 apparently already compromised Linux hosts are involved), and further references. "The fact that your rig runs Linux does not mean you're home free. You need to keep paying attention. When your spam washer has been hijacked and tries to break into other people's systems, you urgently need to get your act together, right now."