all InfoSec news
z0Miner Exploits Korean Web Servers to Attack WebLogic Server
Malware Analysis, News and Indicators - Latest topics malware.news
AhnLab SEcurity intelligence Center (ASEC) has found numerous cases of threat actors attacking vulnerable Korean servers. This post introduces one of the recent case in which the threat actor ‘z0Miner’ attacked Korean WebLogic servers.
z0Miner was first introduced by Tencent Security, a Chinese Internet service provider.
https://s.tencent.com/research/report/1170.html (This link is only available in Chinese.)
These threat actors have a history of distributing miners against vulnerable servers (Atlassian Confluence, Apache ActiveMQ, Log4J, etc.), and they were frequently mentioned in the ASEC …
actor ahnlab asec attack case cases center chinese exploits found intelligence internet internet service malware analysis security security intelligence server servers service service provider tencent threat threat actor threat actors vulnerable web weblogic web servers z0miner