Tech »  Topic »  Sysrv botnet Attack Windows, Linux Servers with New Exploits – Microsoft

Sysrv botnet Attack Windows, Linux Servers with New Exploits – Microsoft


Using vulnerabilities in Web frameworks and WordPress, the Sysrv botnet now targets vulnerable Windows and Linux servers to deploy crypto-mining malware.

This new variant (tracked as Sysrv-K) discovered by Microsoft may now scan WordPress and Spring deployments for unpatched code.

Here’s what the Microsoft Security Intelligence team stated:-

“The new variant, which we call Sysrv-K, sports additional exploits and can gain control of web servers. These vulnerabilities, which have all been addressed by security updates, include old vulnerabilities in WordPress plugins, as well as newer vulnerabilities like CVE-2022-22947.”

We encountered a new variant of the Sysrv botnet, known for exploiting vulnerabilities in web apps and databases to install coin miners on both Windows and Linux systems. The new variant, which we call Sysrv-K, sports additional exploits and can gain control of web servers.

— Microsoft Security Intelligence (@MsftSecIntel) May 13, 2022

This vulnerability (CVE-2022-22947) can be exploited by a remote ...


Copyright of this story solely belongs to gbhackers . To see the full text click HERE