Patch Your OEM and WebLogic Servers Before Hackers Turn Them Into Cryptocurrency Mining Machines

What is it? In April 2019, a security advisory was release for CVE-2019-2725, a deserialization vulnerability in Oracle WebLogic Server that could be easily exploited, allowing unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Servers. Showcase has emerged on the internet that the vulnerability was already being actively exploited to install cryptocurrency miners.… read more