Decoding Water Sigbin's Latest Obfuscation TricksWater Sigbin (aka the 8220 Gang) exploited the Oracle WebLogic vulnerabilities CVE-2017-3506 and CVE-2023-21839 to deploy a cryptocurrency miner using a PowerShell script. The threat actor also adopted new techniques to conceal its activities, making attacks harder to defend against.
Source:
Decoding Water Sigbin's Latest Obfuscation Tricks
