Attackers Exploit Critical Atlassian Confluence Flaw for Cryptojacking

August 28, 2024 at 02:34PM Threat actors are exploiting a critical remote code execution bug in Atlassian to turn cloud environments into cryptomining networks. Trend Micro uncovered attacks that drain network resources using the flaw CVE-2023-22527 in Confluence Data Center and Server. The attackers use various methods and recommended patching the environment to prevent exploitation. … Read more

Critical Atlassian Bug Exploit Now Available; Immediate Patching Needed

November 3, 2023 at 05:59PM Proof of concept exploit code for a critical vulnerability in Atlassian’s Confluence Data Center and Server technology is now publicly available. The vulnerability, assigned CVE-2023-22518 and rated 9.1 out of 10 in severity, poses a risk of data loss. At least 36 unique IP addresses have been observed attempting to … Read more