Cybercriminals Exploit GeoServer RCE (CVE-2024-36401) to Hijack Redis Servers via PolarEdge Campaigns

Sunday, 11 January

Sunday, 24 August, 2025

Cybercriminals Exploit GeoServer RCE (CVE-2024-36401) to Hijack Redis Servers via PolarEdge Campaigns

Cybersecurity researchers report a wave of attacks exploiting the critical remote code execution flaw in OSGeo GeoServer GeoTools. Threat actors leveraged this vulnerability to infiltrate Redis servers, transforming them into IoT botnets, residential proxies, and crypto-mining infrastructure. These tactics profit stealthily—often via legitimate SDKs or modified applications—making detection harder. The campaigns, dubbed PolarEdge, mark cybercrime’s expansion beyond traditional botnets.

Read full story at The Hacker News

Tags:cybercriminals code execution crypto-mining

Download the TechShots App

IT Trends Move Fast. Stay Faster.

Android iOS

Categories

Cybercriminals Exploit GeoServer RCE (CVE-2024-36401) to Hijack Redis Servers via PolarEdge Campaigns

Also Read

India’s Data Center Market Set to Hit 4 GW Capacity by 2030

Indian Army Bolsters Surveillance With Strategic Order

Lenovo Aims to Transform India Into a Global Export Hub for AI Servers

Sony’s New AI "Ghost Player" Feature Could Help Gamers Beat Tough Boss Fights

Betterment Alerts Users After Fraudulent Notifications Target Crypto Accounts

India Not Satisfied as Elon Musk’s X Limits Grok AI Image Generation to Paid Users

Tamil Nadu’s iTNT Hub Partners With XeedQ GmbH to Boost Quantum Computing

FCC Greenlights SpaceX Expansion: 7,500 Additional Starlink Satellites Approved

Google Spinout SandboxAQ Accuses Former Executive of Multi-Million Dollar Extortion

Download the TechShots App

Subscribe To Our Newsletter.