Vulnerable Oracle WebLogic servers impacted by the CVE-2017-3506 flaw, which could be exploited for arbitrary command execution, are being targeted by the cryptojacking operation 8220 Gang to facilitate cryptomining malware distribution, according to The Hacker News.
Article Link: Old Oracle WebLogic vulnerability leveraged in cryptomining attacks | SC Media