all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

8220 Gang Exploiting Oracle WebLogic Flaw to Hijack Servers and Mine Cryptocurrency

Add to bookmarks
May 18, 2023, 9:31 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

The notorious cryptojacking group tracked as 8220 Gang has been spotted weaponizing a six-year-old security flaw in Oracle WebLogic servers to ensnare vulnerable instances into a botnet and distribute cryptocurrency mining malware.
The flaw in question is CVE-2017-3506 (CVSS score: 7.4), which, when successfully exploited, could allow an unauthenticated attacker to execute arbitrary commands

8220 gang botnet cryptocurrency cryptocurrency mining cryptocurrency mining malware cryptojacking cve cvss exploited exploiting flaw hijack malware mining old oracle question score security servers vulnerable weblogic

Visit resource

More from thehackernews.com / The Hacker News

Webinar: Learn Proactive Supply Chain Threat Hunting Techniques 3 hours ago | thehackernews.com
attacks breach cybersecurity defenses +23
Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases 3 hours ago | thehackernews.com
access action call called +30
Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery 4 hours ago | thehackernews.com
beyond breaches businesses can +15
German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies 4 hours ago | thehackernews.com
arrest china chinese federal +9
U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse 7 hours ago | thehackernews.com
businesses commercial commercial spyware department +11
Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware 10 hours ago | thehackernews.com
actor april apt28 called +21
Russian Hacker Group ToddyCat Uses Advanced Tools for Industrial-Scale Data Theft 23 hours ago | thehackernews.com
access actor advanced adversary +21
Pentera's 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous … 1 day, 3 hours ago | thehackernews.com
compromised continuous cyberattack deploy +16
MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws 1 day, 3 hours ago | thehackernews.com
attack breached compromise connect +28

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Network AWS Cloud &Firewall Engineer

@ Arthur Grand Technologies Inc | Plano, TX, United States
View on infosec-jobs.com

Lead Consultant, Data Centre & BCP

@ Singtel | Singapore, Singapore
View on infosec-jobs.com

Protocol Security Engineer

@ Osmosis Labs | Remote
View on infosec-jobs.com

Technical Engineer - Payments Security Specialist

@ H&M Group | Bengaluru, India
View on infosec-jobs.com

Intern, Security Architecture

@ Sony | Work from Home-CA
View on infosec-jobs.com
View more jobs