C3Pool mining via Confluence vulnerability (Campaign)

[email protected] (Wiz Threat Research) 2024-02-08T00:00:00+00:00 View Original

Full Report

On 2024-02-08, a campaign was reported, involving an unknown actor, gaining initial access via 1-day vulnerability, while using Vulnerability exploitation, targeting Confluence Server to achieve Resource hijacking. The following tools were observed: C3Pool.

Analysis Summary