CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Oracle is urging customers to fast-track a patch for a critical ...

Oracle on Tuesday published an out-of-band update patching a critical code-execution vulnerability in its WebLogic server after researchers warned that the flaw was being actively exploited in the ...

Oracle on Thursday previewed a major update of its WebLogic app server. Oracle WebLogic Server 12c is being billed as the corner stone of the company's Cloud Application Foundation and a core ...

Oracle this week announced the forthcoming availability of Oracle WebLogic Server 12c, a major update of the company's WebLogic app server and the cornerstone of its Cloud Application Foundation.

Researchers are urging Oracle WebLogic users to update quickly – after new Muhstik botnet samples started targeting a critical flaw in the servers. A variant of the Muhstik botnet has been uncovered ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. This article dives into the happens-before ...

Threat actors are actively exploiting Oracle WebLogic servers unpatched against CVE-2020-14882 to deploy Cobalt Strike beacons which allow for persistent remote access to compromised devices. Cobalt ...

Hackers hit over 1,400 Apache Solr servers at the end of February in order to install once again, not ransomware, but a cryptocurrency miner. The attack on Apache Solr servers bears some resemblance ...