Muhstik Botnet Exploits Apache RocketMQ Flaw in Latest Operations

A new campaign of Muhstik malware has been discovered targeting message queuing service applications, specifically the Apache RocketMQ platform. The attackers exploited a known vulnerability in the platform to download the Muhstik malware onto compromised instances. By doing so, they were able to co-opt susceptible servers and expand the scale of their attack.