Other Services

Trend Micro: Attackers use certificate files to install crypto mining malware

June 11, 2019 | Cryptocurrency | Technology

According to Trend Micro, a cybersecurity company, attackers are exploiting the vulnerability in the Oracle WebLogic server, as reported in an official blog post. Attackers are installing mining malware for Monero (XMR) using the certificate files. Such kind of cryptojacking involves the installation of malware on the user's device and using the computer's processing power to mine cryptocurrency.

As per the post, the Oracle WebLogic vulnerability  (“CVE-2019-2725”) was caused by a deserialization error. A security patch for the same was released in the database for national vulnerability. But as per reports on SANS ISC InfoSec forum, the vulnerability had already been exploited by the attackers for cryptojacking.

The malware used by the attackers for cryptojacking hides malicious code in the certificate files. Transferring malicious codes in a certificate file format helps the malware evade detection. The company has recommended WebLogic Server users to update the software to the latest version containing the security patch.

Follow us on twittertelegram, and youtube for more updates.

  • Thumbs Up 2
  • Thumbs Down 0

External News Headlines

Cryptocurrency Prices

  • Bitcoin

    BTC

    $3,243.29

    3,517.8 (24H Volume)
  • Bitcoin

    BTC

    $3,243.29

    3,517.8 (24H Volume)
  • Bitcoin

    BTC

    $3,243.29

    3,517.8 (24H Volume)
  • Bitcoin

    BTC

    $3,243.29

    3,517.8 (24H Volume)