Unidentified threat actors use brute force attacks to gain control of the popular open source Java application servers then hijack them for DDoS and crypto-mining campaigns.
Article Link: https://cms.cyberriskalliance.com/news/unpatched-apache-tomcat-servers-spread-mirai-botnet-malware