Hackers exploit vulnerabilities in Oracle WebLogic using Water Sigbin techniques

Hackers exploit vulnerabilities in Oracle WebLogic using Water Sigbin techniques

Cybersecurity researchers have uncovered a complex attack campaign orchestrated by the threat actor Water Sigbin (also known as 8220 Gang), targeting vulnerabilities in Oracle WebLogic Server, specifically CVE-2017-3506 and CVE-2023-21839. The attackers employed these vulnerabilities to plant the XMRig cryptocurrency miner on compromised systems. To avoid detection, Water Sigbin utilized advanced tactics such as code … Read more