Old Oracle WebLogic vulnerability leveraged in cryptomining attacks

20 May 2023

Vulnerable Oracle WebLogic servers impacted by the CVE-2017-3506 flaw, which could be exploited for arbitrary command execution, are being targeted by the cryptojacking operation 8220 Gang to facilitate cryptomining malware distribution, according to The Hacker News. Such a vulnerability is being leveraged by 8220 Gang to drop a PowerShell payload used as the basis for a separate PowerShell script that helps elude detection by the Windows Antimalware Scan Interface before fetching another obfuscated payload, a Trend Micro report showed.

Read full article on SC Magazine

Date:

20 May 2023

Categorie(s):

NEWS

Tag(s):

IT, News, Old, Oracle, WebLogic

Dating apps kiss’n’tell all sorts of sensitive personal info4 May 2024
Multilogin Antidetect Browser Review 20244 May 2024
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles4 May 2024
Lightsail VPN Review: Is Lightsail VPN Safe? [+Best Alternatives]4 May 2024
How To Secure Your Business In The Times Of All-pervasive Hackers4 May 2024