Old Oracle WebLogic flaw becomes new attack target

20 December 2023

Healthcare, telecommunications, and financial services firms across the U.S., Mexico, Columbia, Spain, and South Africa are having their Oracle WebLogic servers vulnerable to the remote code execution flaw, tracked as CVE-202014883, targeted by the threat operation 8220 Gang to facilitate malware distribution, The Hacker News reports. Such a vulnerability which is usually used alongside another WebLogic server bug, tracked as CVE-2020-14882 has been leveraged by 8220 Gang for XML file creation and code execution for the deployment of the Agent Tesla, nasqa, and rhajk payloads, a report from Imperva revealed.

Source: SC Magazine

Date:

20 December 2023

Categorie(s):

NEWS

Tag(s):

IT, Old, Oracle, Threat Intelligence, WebLogic

How AI Is Transforming IAM and Identity Security15 November 2024
Top Applications of Robotic Process Automation in Cybersecurity15 November 2024
Black Basta Ransomware Leveraging Social Engineering For Malware Deployment15 November 2024
AI is dumber than you think15 November 2024
Palo Alto Networks firewalls, Expedition under attack (CVE-2024-9463, CVE-2024-9465)15 November 2024