Oracle publishes rare out-of-band security update for WebLogic servers Oracle releases additional fix to patch a bug for the second time after the publication of proof-of-concept exploit code.

The notorious 8220 Gang is exploiting a high-severity flaw (CVE-2020-14883) in Oracle WebLogic Server to spread malware.

Attackers use zero-day to deploy new Sodinokibi ransomware strain on unpatched Oracle WebLogic servers.

An unknown attacker is exploiting weak passwords to break into Oracle WebLogic servers and deploy an emerging Linux malware called Hadooken, according to researchers from cloud security outfit Aqua.

'Hadooken' Malware Targets Oracle's WebLogic Servers An attacker is using the tool to deploy a cryptominer and the Tsunami DDoS bot on compromised systems.

Prophet Spider Exploits WebLogic CVEs to Enable Ransomware Attacks The group target unpatched Oracle WebLogic servers to gain access that they later hand off to third parties who deploy ransomware.