TypeCampaignActors👑Kinsing operatorPub. dateAugust 29, 2023Initial access1-day vulnerabilitySoftware misconfigImpactResource hijackingObserved techniquesMisconfigured PostgreSQL abuseTargeted technologiesOpenfirePostgreSQLWebLogicWordPressLiferayPHPUnitApache RocketMQReferenceshttps://www.aquasec.com/blog/kinsing-malware-exploits-novel-openfire-vulnerability/https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/initial-access-techniques-in-kubernetes-environments-used-by/ba-p/3697975https://thehackernews.com/2024/05/kinsing-hacker-group-exploits-more.htmlStatusStubLast editedJun 2, 2024 11:54 AM