The 8220 gang has been discovered exploiting a vulnerability in the Oracle WebLogic Server (CVE-2020-14883) to spread malware, according to Imperva Threat Research. Active since 2017, the group typically deploys cryptocurrency miners on Linux and Windows hosts by exploiting known weaknesses. Recently, they have been targeting healthcare, telecommunications and financial services in the US, South Africa, Spain, Columbia, and Mexico.
![](https://healsecurity.com/wp-content/uploads/2024/07/group-ibs-threat-intelligence-and-defence-centre-equip-undergraduates-with-sophisticated.jpg)
Group-IB’s Threat Intelligence and Defence Centre Equip Undergraduates with Sophisticated Cybersecurity Technologies to Boost Threat Analysis and Enhance Cyber Resilience for Campus Start-ups
Hey there from the heart of the San Francisco Bay Area! It’s an absolute pleasure to have you back again for our chat on some