PeopleSoft and WebLogic app servers, as well as cloud systems using WebLogic, hacked and used to net some $226K in digital currency.

Snowballing attacks using a recently patched critical bug show no sign of abating. Malicious activity exploiting the recently disclosed Oracle WebLogic critical deserialization vulnerability (CVE ...

CVE-2020-2883 was patched in Oracle's April 2020 Critical Patch Update - but proof of concept exploit code was published shortly after.

Hackers exploit critical Oracle WebLogic flaw to secretly mine cryptocurrency worldwide Hackers have been found using this exploit to install cryptominers on vulnerable, unpatched devices.

The exploit code was released July 17, two days after Oracle issued its second-quarter Critical Patch Update.

Researchers are urging companies to apply a security update to patch a flaw in Oracle’s WebLogic Server component that is being exploited to mine cryptocurrency.

Hackers have released exploit codes for an unpatched flaw affecting the Apache plug-in for Oracle's WebLogic Server. While Oracle prepares a patch for the vulnerability, it has provided ...

New wave of attacks against Oracle WebLogic servers using a brand new zero-day detected over the weekend.

Oracle publishes rare out-of-band security update for WebLogic servers Oracle releases additional fix to patch a bug for the second time after the publication of proof-of-concept exploit code.

Threat actors have started to hunt for servers running Oracle WebLogic instances vulnerable to a critical flaw that allows taking control of the system with little effort and no authentication.

Oracle is scrambling to create an emergency patch for a severe vulnerability in the company’s WebLogic server, as exploit code is circulating on the Web.

Zero-day attackers deliver a double dose of ransomware—no clicking required High-severity hole in Oracle WebLogic under active exploit for 9 days. Patch now.