Hackers exploit Qinglong flaws for cryptomining deployments

Hackers are taking advantage of two major flaws in the Qinglong open-source task scheduler, CVE-2026-3965 and CVE-2026-4047, which can be combined to gain remote control of vulnerable systems. These authentication-bypass vulnerabilities affect Qinglong versions 2.20.1 and older, and have been exploited for cryptomining deployments.

https://osintsights.com/hackers-exploit-qinglong-flaws-for-cryptomining-deployments?utm_source=mastodon&utm_medium=social

#Qinglong #Cve20263965 #Cve20264047 #Cryptomining #VulnerabilityExploitation