Kinsing campaigns (2023-2024) (Campaign)

[email protected] (Wiz Threat Research) 2023-08-29T00:00:00+00:00 View Original

Full Report

On 2023-08-29, a campaign was reported, involving Kinsing operator, gaining initial access via 1-day vulnerability, Software misconfig, while using Misconfigured PostgreSQL abuse, targeting Openfire, PostgreSQL, WebLogic, WordPress, Liferay, PHPUnit, Apache RocketMQ to achieve Resource hijacking.

Analysis Summary