"GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware"

Multiple campaigns have exploited a recently disclosed OSGeo GeoServer GeoTools security flaw to deliver cryptocurrency miners, botnet malware, and a backdoor. The critical Remote Code Execution (RCE) bug enables malicious actors to take over vulnerable instances. Due to its active exploitation, the US Cybersecurity and Infrastructure Security Agency (CISA) added it to its Known Exploited Vulnerabilities (KEV) catalog in mid-July. This article continues to discuss the exploitation of a security vulnerability in OSGeo GeoServer GeoTools.

THN reports "GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware"

Submitted by grigby1

Submitted by Gregory Rigby on