Oracle publishes rare out-of-band security update for WebLogic servers Oracle releases additional fix to patch a bug for the second time after the publication of proof-of-concept exploit code.

Attackers use zero-day to deploy new Sodinokibi ransomware strain on unpatched Oracle WebLogic servers.

'Hadooken' Malware Targets Oracle's WebLogic Servers An attacker is using the tool to deploy a cryptominer and the Tsunami DDoS bot on compromised systems.

Prophet Spider Exploits WebLogic CVEs to Enable Ransomware Attacks The group target unpatched Oracle WebLogic servers to gain access that they later hand off to third parties who deploy ransomware.