Apache ActiveMQ Flaw Exploited to Deploy DripDropper Malware on Cloud Linux Systems - The Cyber Post

Threat actors are exploiting a nearly two-year-old vulnerability in Apache ActiveMQ to deploy malware called DripDropper on cloud Linux systems. The attackers are patching the exploited vulnerability after gaining access to prevent further exploitation and evade detection. The malware, DripDropper, is a downloader that communicates with an attacker-controlled Dropbox account and facilitates various actions on compromised systems.