Imperva Threat Research has revealed the 8220 gang’s use of multiple vulnerabilities, including the Oracle WebLogic Server flaw, to spread cryptojacking malware in the Americas, Europe, and Africa. Known for mass malware deployment, the gang primarily targets Windows and Linux web servers. Despite using simple exploits and unsophisticated methods, the group continually evolves its strategies to avoid detection. The gang mainly targets organisations in the United States, South Africa, Spain, Columbia, and Mexico.
US healthcare company, Change Healthcare, has been targeted by the hacker collective ALPHV/Blackcat, which claimed to have stolen sensitive health data of millions of Americans.