Major attempt to exploit XML-RPC remote code injection vulnerability is observed (September 22, 2018)

SonicWall Threat Research Lab has recently observed a huge spike in detection for the XML-RPC remote code injection. There are 3000+ hits in the last two days attempting to exploit 100+ web servers behind the SonicWall Firewalls. All these attacks are coming from one IP address 96.68.165.185 targeting servers in different countries. XML-RPC? XML-RPC is…Learn More