Hackers have been attacking MSSQL servers to distribute the FreeWorld ransomware. The attack campaign, known as DB#JAMMER, involves the use of enumeration software, RAT payloads, and ransomware payloads. The attackers gain access to the server through brute force attacks and exploit the enabled xp_cmdshell function. They carry out various operations on the host, create new users, and modify registry alterations. The attackers also connect to a remote SMB share to install malicious tools like cobalt strike and distribute the ransomware. Strong passwords are important to prevent such attacks. #cyberattack #cybersecurity #cybersecuritynews #malware

https://cybersecuritynews.com/hackers-attacking-mssql-servers/