Cybercriminals from APT-27 group targetting the high profile enterprise networks by exploiting MySQL server through malware such as NewCoreRAT(Remote Access Trojan) linked with Chinese APT Campaign. There are nearly 4.9 million servers configured to run on public IP. The service runs with system privilege, so if an attacker enters into the network using MySQL then they can gain complete access to the infected machine without any vulnerability. Researchers from Quick Heal observed nearly 15,000 attacks in their honeypot system.”]