The well-known Apache Struts 2 Jakarta Multipart Parser remote code execution cryptocurrency campaign, is now being used by cyber-criminals to mine Electroneum coin by targeting systems running Windows operating systems.
The amount of illegal cryptocurrency mining that is now taking place makes keeping track a difficult task, but here is a quick roundup of what was has been spotted over the last few days.
Autosploit, a new tool that basically couples Shodan and Metasploit, makes it easy for even amateurs to hack vulnerable IoT devices.
A pair of security updates released by the Apache Software Foundation patch vulnerabilities in Apache Struts versions 2.5 to 2.5.14 that would let a remote attacker take control of a system, according to a US-CERT alert.
Apache OpenOffice patched four medium vulnerabilities in the suites word processing and graphics apps.
Oracle issued seven security updates to patch vulnerabilities found in Apache Struts 2.
Equifax said a breach it discovered in March was not related to the second in September though the hackers were reportedly the same, and the same vulnerability in Apache Struts was exploited in both incidents.
The Apache Struts Software Foundation has released an update to its open-source web application framework to fix a critical remote code execution vulnerability
Researchers at Invincea report that banking trojans delivered by weaponised Office documents were the top attack vector for the month of October.