October 14, 2024 at 09:56PM The commentary reflects on the challenges of “shadow IT” in the security industry, emphasizing the prevalence of outdated systems (“beige desktops”) running unvetted code. While organizations implement controls, shadow IT persists. The author questions whether the Chief Information Security Officer or the Chief Financial Officer should bear responsibility for this … Read more
September 13, 2024 at 08:03AM UK Technology Secretary Peter Kyle announced that data centers in the UK are now classified as part of the country’s Critical National Infrastructure. The designation aims to enhance cybersecurity and facilitate government support. However, concerns have arisen over plans for a new data center in a protected Green Belt region. … Read more
July 16, 2024 at 10:18AM Trend Micro partners with IBM to enhance security for critical SAP workloads running on IBM Power servers. The collaboration leverages IBM’s system security expertise and Trend Vision One™ to provide advanced threat protection, detection, and response, addressing the increasing cyber risks faced by SAP customers. The combined solution extends visibility, … Read more
April 3, 2024 at 06:02PM Chilean data center and hosting provider IxMetro Powerhost fell victim to a ransomware attack by a new gang called SEXi, impacting VMware ESXi servers and backups. The CEO stated that negotiations with the attackers are discouraged, and the ransom demand equates to $140 million. PowerHost is working with security agencies … Read more
January 21, 2024 at 03:15PM Finnish IT services provider Tietoevry faced a ransomware attack affecting a Swedish data center, impacting its cloud hosting customers. The attack was isolated, but caused widespread outages for multiple Swedish businesses, including the largest cinema chain and government agencies. The ransomware gang Akira is allegedly responsible, with cases of their … Read more
January 16, 2024 at 10:23AM Atlassian Confluence Data Center and Server had a critical remote code execution vulnerability (CVE-2023-22527) impacting versions released before December 5, 2023. The flaw allowed unauthenticated attackers to perform remote code execution. Atlassian fixed the vulnerability in later versions and advises users to install the latest version to protect against potential … Read more
November 10, 2023 at 04:03AM Researchers have discovered a stealthy backdoor called Effluence that exploits a security flaw in Atlassian Confluence Data Center and Server. The backdoor allows attackers to move laterally within the network and exfiltrate data. It can be accessed remotely without authenticating to Confluence. The attack chain involves exploiting two critical bugs … Read more
November 4, 2023 at 12:30PM Enterprise software maker Atlassian has issued a warning on a critical-severity vulnerability in Confluence Data Center and Confluence Server. The flaw, tracked as CVE-2023-22518, could result in severe data loss due to an improper authorization issue. Atlassian has released patches for the bug and urges organizations to apply them promptly. … Read more
October 31, 2023 at 02:22PM Software maker Atlassian has issued a warning to all Confluence Data Center and Server customers about a critical vulnerability that could be exploited without authentication. The vulnerability, known as CVE-2023-22518, is an improper authorization bug that affects all Confluence versions. Although no data exfiltration can occur from exploiting the flaw, … Read more
October 31, 2023 at 02:06PM Australian software company Atlassian has issued a warning to admins to patch their Internet-exposed Confluence instances due to a critical security flaw. The vulnerability, tracked as CVE-2023-22518, could lead to data loss. While it doesn’t impact confidentiality or allow for data exfiltration, it is necessary to take immediate action to … Read more