By David Jones
A new Apache Struts campaign that researchers named “Zealot” has come to light in recent weeks. Zealot loads Windows or Linux-based machines by installing a miner for Monero, which has become one of the hottest cryptocurrencies used in recent malware attacks. Zealot uses NSA-linked EternalBlue and EternalSynergy exploits, according to F5 Labs, which discovered the campaign. It targets unsuspecting computer users with a multistaged attack that exploits servers vulnerable to the Jakarta Multipart Parser attack and the DotNetNuke vulnerability.
From: Linux Insider