Browse Definitions :
Definition

port 9875 (port of doom)

Contributor(s): Matthew Haughn, Carrie Higbie

Port 9875 is a port often associated with setting up VoIP (voice over IP) communications. The port is also notorious as an attack vector for the Portal of Doom Trojan horse; as a result, port 9875 is sometimes referred to as the Port of Doom.

Port 9875 is registered with the Internet Assigned Numbers Authority (IANA) for session announcement. The session announcement protocol (SAP) defines the format and describes the information that will be exchanged during a multicast conferencing session. The VoIP system traffic directed to the port communicates the start and stop of a session if this is the port expected by the system. Port 9875 uses the IP network standard TCP (Transmission Control Protocol), which guarantees the delivery of data packets in the order in which they were sent.

Malicious hackers can use the Portal of Doom Trojan to look for sensitive data, such as credit card numbers and information that enables identity theft, or just to cause mischief. The Trojan can enter without causing any behavior that alerts the user and does not have to trick the user into running an executable file manually.

This was last updated in March 2016

Continue Reading About port 9875 (port of doom)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • identity provider

    An identity provider is a system component that is able to provide an end user or internet-connected device with a single set of ...

  • firewall

    A firewall is software or firmware that enforces a set of rules about what data packets will be allowed to enter or leave a ...

  • encryption

    Encryption is the method by which information is converted into secret code that hides the information's true meaning. The ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

Close