Backdoors

Threats ⚠️ • Sec+ Glossary 📖 • Security+ 02 • Difficulty: free

What is Backdoors?

A backdoor is a hidden or unauthorized method of bypassing normal authentication or access controls in order to gain access to a system, application, or device.

Examples

An attacker installs a backdoor on a compromised server so they can return later without repeating the original intrusion.
Malware drops a hidden remote access component that listens for commands after the initial infection is complete.

Discover 🔎

A successful intrusion is often only the beginning of the problem. Once an attacker gets in, they usually want a way back. Repeating the original attack every time would be risky, noisy, and inefficient. A backdoor solves that problem by creating a hidden path into the system that bypasses the normal route.

That makes backdoors especially dangerous. The visible compromise may look like it has been contained, while the attacker still has a quiet way to return. The damage is not only the first entry. It is the persistence and continued control that follow.

Remember: A backdoor is valuable to an attacker because it turns one-time access into repeatable access.

Summary 📝

A backdoor is a hidden means of bypassing normal access controls so that an attacker or unauthorized party can return to a system without using the approved route. It is dangerous because it turns a single compromise into continued access and makes cleanup much harder. Effective defense depends on finding not only the original entry point, but also any persistence mechanisms or hidden access paths left behind.

Open the interactive lesson Browse more topics

Tip: The interactive version includes progress tracking, decks, and premium deep dives.