all InfoSec news
Apache ActiveMQ bug exploited to deliver Kinsing malware
Help Net Security www.helpnetsecurity.com
Attackers are exploiting a recently fixed vulnerability (CVE-2023-46604) in Apache ActiveMQ to install Kinsing malware and cryptocurrency miners on targeted Linux systems. CVE-2023-46604 exploitation Apache ActiveMQ is a popular Java-based open source message broker that allows communication between applications and services by translating messages exchanged via different protocols (OpenWire, STOMP, MQTT, AMQP, etc.). CVE-2023-46604 is a vulnerability in the Java OpenWire protocol marshaller and may allow attackers to execute arbitrary code with the same privileges … More
The post …
activemq apache apache activemq applications attackers broker bug communication cryptocurrency cryptojacking cve cve-2023-46604 don't miss exploit exploitation exploited exploiting hot stuff install java kinsing kinsing malware linux linux systems malware message messages miners mqtt open source popular protocols services systems trend micro vulnerability