Zero-day attackers deliver a double dose of ransomware—no clicking required

From arstechnica.com

Screenshot of ransomware warning.

Attackers have been actively exploiting a critical zero-day vulnerability in the widely used Oracle WebLogic server to install ransomware, with no clicking or other interaction necessary on the part of end users, researchers from Cisco Talos said on Tuesday.

Read more…