Lucene search
+L

10 matches found

The Hacker News
The Hacker News
added 2024/10/07 1:52 p.m.50 views

New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries

Cybersecurity researchers have discovered a new botnet malware family called Gorilla aka GorillaBot that draws its inspiration from the leaked Mirai botnet source code. Cybersecurity firm NSFOCUS, which identified the activity last month, said the botnet "issued over 300,000 attack commands, with...

8.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/06/28 11:59 a.m.76 views

8220 Gang Exploits Oracle WebLogic Server Flaws for Cryptocurrency Mining

Security researchers have shed more light on the cryptocurrency mining operation conducted by the 8220 Gang by exploiting known security flaws in the Oracle WebLogic Server. "The threat actor employs fileless execution techniques, using DLL reflective and process injection, allowing the malware...

7.5CVSS7.1AI score0.99993EPSS
Exploits56
The Hacker News
The Hacker News
added 2024/06/18 9:41 a.m.58 views

New Malware Targets Exposed Docker APIs for Cryptocurrency Mining

Cybersecurity researchers have uncovered a new malware campaign that targets publicly exposed Docket API endpoints with the aim of delivering cryptocurrency miners and other payloads. Included among the tools deployed is a remote access tool that's capable of downloading and executing more...

7.8AI score
Exploits0
hivepro
hivepro
added 2024/03/08 1:49 p.m.24 views

Misconfigured Servers Targeted with New Golang Malwares

Summary: In a newly observed malware campaign, threat actors are targeting misconfigured and vulnerable servers running Apache Hadoop YARN, Docker, Atlassian Confluence, and Redis services. The campaign aims to deliver a cryptocurrency miner and establish a reverse shell for persistent remote...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2023/11/16 8:15 a.m.49 views

CVE-2023-26031 Privilege escalation in Apache Hadoop Yarn container-executor binary on Linux systems

Relative library resolution in linux container-executor binary in Apache Hadoop 3.3.1-3.3.4 on Linux allows local user to gain root privileges. If the YARN cluster is accepting work from remote authenticated users, this MAY permit remote users to gain root privileges. Hadoop 3.3.0 updated the "...

7.9AI score0.02089EPSS
Exploits0References4
OSV
OSV
added 2022/08/26 12:3 a.m.28 views

GHSA-RR2M-GFFV-MGRJ Deserialization of Untrusted Data in Apache Hadoop YARN

ZKConfigurationStore which is optionally used by CapacityScheduler of Apache Hadoop YARN deserializes data obtained from ZooKeeper without validation. An attacker having access to ZooKeeper can run arbitrary commands as YARN user by exploiting this. Users should upgrade to Apache Hadoop 2.10.2,...

8.8CVSS8.1AI score0.0182EPSS
Exploits0References5
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/07/30 12:0 a.m.27 views

This Week in Security News - July 30, 2021

Threat Actors Exploit Apache Hadoop YARN and BlackMatter Ransomware Claims to Be Best of REvil, Darkside...

2.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/07/27 12:0 a.m.39 views

Threat Actors Exploit Misconfigured Apache Hadoop YARN

We look into how threat actors are exploiting Apache Hadoop YARN, a part of the Hadoop framework that is responsible for executing tasks on the cluster. This analysis covers the payloads deployed, the tactics used in the attacks, and basic recommendations for strengthening cloud security...

2.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/09/20 12:0 a.m.923 views

Apache Hadoop YARN ResourceManager Unauthenticated RCE (Remote) (Xbash)

The Apache Hadoop YARN ResourceManager running on the remote host is allowing unauthenticated users to create and execute applications. An unauthenticated, remote attacker can exploit this, via a specially crafted HTTP request, to potentially execute arbitrary code, subject to the user privileges...

6AI score
Exploits0References1
0day.today
0day.today
added 2018/07/13 12:0 a.m.29 views

Apache #Hadoop YARN ResourceManager Unauthenticated Command Execution Exploit

This Metasploit module exploits an unauthenticated command execution vulnerability in Apache Hadoop through ResourceManager REST API. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Hadoop YARN...

0.4AI score
Exploits0
Rows per page
Query Builder