It was recently reported that database administrators are being asked to secure their servers after security issues were discovered.
Indeed, Microsoft SQL and MySQL database administrators were warned that an active and dangerous campaign was infecting them with a remote access trojan (RAT). These unnamed threat actors are apparently taking advantage of databases with weak credentials to install the Gh0stCringe RAT.
The malware was distributed via a vulnerability in Microsoft Server Messaging Block (SMB) and can connect to an attacker’s command and control server in order to copy itself to certain paths in Windows and download payloads.
Hence, administrators are advised to put stronger security to protect their database servers from cyberattacks as well as apply the latest security patches.