April 17, 2024 at 07:12AM Threat actors exploit an unpatched Atlassian server vulnerability (CVE-2023-22518) to deploy Linux Cerber ransomware. This creates a critical security risk, leading to loss of system control. Ransomware payloads are executed using a web shell, encrypting files and dropping ransom notes. The use of C++ payloads is noted, and new ransomware … Read more
November 10, 2023 at 05:23AM Cerber ransomware has been exploiting the Atlassian Confluence vulnerability CVE-2023-22518. The vulnerability allows unauthorized users to reset and create a Confluence instance administrator account, granting them full admin privileges. Cerber previously targeted Atlassian in 2021. The ransomware uses an encoded PowerShell command to download and execute a remote payload, encrypting … Read more
November 7, 2023 at 01:55PM Active cyberattacks targeting unpatched Atlassian Confluence Data Center and Server technology have increased the vulnerability’s CVSS score from 9.1 to 10, the most critical rating. All versions of Atlassian Confluence Data Center and Server are affected, except for cloud instances. The attacks exploit an improper authorization flaw, allowing unauthorized access … Read more
November 6, 2023 at 12:40PM Attackers are exploiting a critical security flaw in Atlassian Confluence to encrypt files with Cerber ransomware. The flaw, tracked as CVE-2023-22518, received a severity rating of 9.1/10 and affects all versions of Confluence Data Center and Confluence Server software. Although there are currently no reports of active exploitation, Atlassian has … Read more
November 6, 2023 at 07:42AM GreyNoise has issued a warning about the first attempts to exploit a recent vulnerability in Atlassian Confluence Data Center and Confluence Server. The critical security flaw, CVE-2023-22518, could lead to significant data loss and affects all Confluence versions. Atlassian has released patches for the vulnerability, but has also warned that … Read more
November 4, 2023 at 12:30PM Enterprise software maker Atlassian has issued a warning on a critical-severity vulnerability in Confluence Data Center and Confluence Server. The flaw, tracked as CVE-2023-22518, could result in severe data loss due to an improper authorization issue. Atlassian has released patches for the bug and urges organizations to apply them promptly. … Read more
November 3, 2023 at 05:59PM Proof of concept exploit code for a critical vulnerability in Atlassian’s Confluence Data Center and Server technology is now publicly available. The vulnerability, assigned CVE-2023-22518 and rated 9.1 out of 10 in severity, poses a risk of data loss. At least 36 unique IP addresses have been observed attempting to … Read more
November 2, 2023 at 05:53PM Atlassian has issued a warning to admins about a critical security flaw in Confluence that could result in data destruction attacks. A public exploit for the vulnerability, tracked as CVE-2023-22518, has been found, putting Internet-exposed and unpatched instances at high risk. Atlassian has urged immediate action, including upgrading software and … Read more