An attacker exploits Oracle WebLogic Server Vulnerability to install XMR-aware malware

According to Cointelegraph, Internet security company Trend Micro revealed in a blog post on June 10 that an attacker exploited a vulnerability in Oracle WebLogic Server to install monero (XMR) malware and used a certificate file to hide it. According to Trend Micro's post, security patches for Oracle WebLogic Vulnerability ("CVE-2019-2725") were released in the National Vulnerability Database this spring. However, Trend Micro cited a report appearing on the SANS ISC InfoSec forum, claiming that the vulnerability has been used for encryption hijacking purposes and has been validated and analyzed.