Security News

New ‘Sodinokibi’ Ransomware Exploits Critical Oracle WebLogic Flaw
2019-04-30 19:20

A recently-patched critical flaw in Oracle WebLogic is being actively exploited to peddle a new ransomware variant, which researchers call "Sodinokibi."

New Sodinokibi Ransomware Delivered via Oracle WebLogic Flaw
2019-04-30 17:44

A critical Oracle WebLogic Server vulnerability patched last week has been exploited by malicious actors to deliver a new piece of ransomware to organizations. read more

Oracle Patches WebLogic Zero-Day Exploited in Attacks
2019-04-29 12:53

Oracle has released an out-of-band update for WebLogic Server, a Java EE application server that is part of the company’s Fusion Middleware offering, to patch a zero-day vulnerability exploited in...

Week in review: Oracle WebLogic zero-day under attack, a new way to improve network security
2019-04-28 18:30

Here’s an overview of some of last week’s most interesting news and articles: Qualcomm chips leak crypto data from secure execution environment A vulnerability in Qualcomm chips could be exploited...

'Highly Critical' Unpatched Zero-Day Flaw Discovered In Oracle WebLogic
2019-04-25 15:03

A team of cybersecurity researchers today published a post warning enterprises of an unpatched, highly critical zero-day vulnerability in Oracle WebLogic server application that some attackers...

Researchers flag new Oracle WebLogic zero-day RCE flaw
2019-04-25 13:25

Attackers looking to compromise Oracle WebLogic servers for their own needs have a new zero-day RCE flaw at their disposal. “Oracle WebLogic wls9_async and wls-wsat components trigger...

Recently Patched Oracle WebLogic Flaw Exploited in the Wild
2018-07-24 14:38

At least two threat groups have started exploiting a critical Oracle WebLogic vulnerability patched earlier this month. The attacks began shortly after several proof-of-concept (PoC) exploits were...

Faulty Patch for Oracle WebLogic Flaw Opens Updated Servers to Hackers Again
2018-04-30 13:48

Earlier this month, Oracle patched a highly critical Java deserialization remote code execution vulnerability in its WebLogic Server component of Fusion Middleware that could allow attackers to...

Hackers Target Poorly Patched Oracle WebLogic Flaw
2018-04-30 12:53

Hackers have been scanning the Internet for Oracle WebLogic Server installations that can be taken over using a recently addressed vulnerability. While patched systems should be protected against...

Oracle WebLogic Server Flaw Exploited to Deliver Crypto-Miners
2018-02-16 16:12

Threat actors are exploiting a recently patched vulnerability in Oracle WebLogic Server to infect systems with crypto-currency mining malware, FireEye reports.  read more