SecurityWeek
Cinterion Modem Flaws Pose Risk to Millions of Devices in Industrial, Other Sectors
A critical vulnerability in the Cinterion cellular modems can be exploited for remote code execution via SMS messages.
SecurityWeek
A critical vulnerability in the Cinterion cellular modems can be exploited for remote code execution via SMS messages.
CSO
Attackers target flaws for a reason: Even years after they are discovered, they still work.
Ars Technica
Perimeter devices ought to prevent network hacks. Why are so many devices allowing attacks?
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
The Hacker News
How attackers are hacking organizations without touching the endpoint by targeting cloud identities.
Cyber Security News
Hackers often use Linux ransomware due to its prevalence in server environments, offering higher potential payouts from organizations with
Security Affairs
Threat actors are exploiting the CVE-2023-22518 flaw in Atlassian servers to deploy a Linux variant of Cerber (aka C3RB3R) ransomware.
Infosecurity News
The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server
The Hacker News
Hackers are exploiting a critical vulnerability in Atlassian servers to gain admin access and deploy a Linux variant of Cerber ransomware.
SC Magazine
Attackers exploited a critical vulnerability to create a new administrator account.
Ars Technica
No patch yet for unauthenticated code-execution bug in Palo Alto Networks firewall.
SecurityWeek
USCYBERCOM said its Cyber National Mission Force participated in 22 foreign hunt forward operations in 2023.
SecurityWeek
A critical OS command injection in Progress Flowmon can be exploited to gain remote, unauthenticated access to the system.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
The Hacker News
China-linked threat group aggressively exploits software flaws in Connectwise ScreenConnect & F5 BIG-IP.
Cyber Security News
First identified in 2020, Sysrv is a botnet that uses a Golang worm to infect devices and deploy cryptominers, propagates by exploiting
Cyber Security News
A critical Bamboo Data Center and Server vulnerability has been discovered with a critical vulnerability which has been given CVE-2024-1597
The Hacker News
Atlassian has issued patches for over 25 security issues, including a critical SQL injection bug (CVE-2024-1597) in Bamboo Data Center & Server.
Security Affairs
Atlassian fixed tens of vulnerabilities in Bamboo, Bitbucket, Confluence, and Jira products, including a critical flaw that can be very dangerous.
SecurityWeek
Atlassian releases patches for two dozen vulnerabilities, including a critical-severity bug in Bamboo Data Center and Server.
Bleeping Computer
Okta denies that its company data was leaked after a threat actor shared files allegedly stolen during an October 2023 cyberattack on a hacker forum.
The Hacker News
Hackers leveraging JetBrains TeamCity flaws to propagate BianLian ransomware attacks
DarkReading
The proof-of-concept exploits for Atlassian Confluence would enable arbitrary code execution without requiring file system access.
The Hacker News
Learn from GitLab's 2017 incident: 300GB of data lost in seconds, but their transparent recovery is a masterclass in accountability.
Infosecurity News
Ransomware and destabilization attacks rose in 2023, yet France’s ANSSI is most concerned about a diversification of cyber espionage campaigns
SC Magazine
The fileless, self-modifying, worm-like network traversal tool automatically searches for SSH keys.
The Hacker News
A critical vulnerability (CVE-2020-3259) in Cisco ASA and FTD software has been added to CISA's KEV catalog.
Infosecurity News
Adversaries targeting EU-based victims increasingly leverage EU affairs in spear phishing attacks, CERT-EU found
The Hacker News
Password spraying, OAuth hijacking, and nation-state attacks – the cybersecurity world is under siege. Learn how to protect your organization.
The Hacker News
U.S. Department of State is offering up to $10 million for information on Hive ransomware operators.
Trend Micro
In this blog entry, we discuss CVE-2023-22527, a vulnerability in Atlassian Confluence that has a CVSS score of 10 and could allow threat actors to perform remote code execution.
The Cyber Express
The impact of the massive Okta data breach lingers, continuing to provide an opportunistic terrain for hackers. Cloudflare, a prominent
CSO
The hack, which used stolen tokens and credentials, was able to access “some documentation and a limited amount of source code” before being thwarted.
The Hacker News
Discover the details of the recent AnyDesk cyber attack, including the company’s swift response to secure its production systems and the steps users s
DarkReading
The cyberattackers, believed to be state sponsored, didn't get far into Cloudflare's global network, but not for lack of trying.
HACKRead
The aftermath of the 2023 Okta breach continues to unfold, with Cloudflare disclosing the details of its security compromise.
CyberSecurity Dive
A threat actor that previously intruded Cloudflare’s network through its Okta environment regained access with mistakenly unrotated credentials.
DataBreaches
Sergiu Gatlan reports: Cloudflare disclosed today that its internal Atlassian server was breached by a suspected ‘nation state attacker’ who...
Cyber Security News
Cloudflare discovered a threat actor on the self-hosted Atlassian server on November 23, 2023. The attack was launched with the use of one stolen access token.
SecurityWeek
A nation-state threat actor accessed internal Cloudflare systems using credentials stolen during the Okta hack.
Infosecurity News
Cloudflare revealed suspected nation-state attackers compromised its systems and accessed source code using credentials stolen in the Okta breach
Security Affairs
Cloudflare revealed that a nation-state actor breached its internal Atlassian server, gaining access to its wiki and its bug database
The Hacker News
Cloudflare suffered nation-state attack. Hackers accessed documentation, source code, and attempted data center breach. Read full story for details.
SC Magazine
Cloudflare admits that the attack was caused by a failure to rotate credentials following last fall’s Okta breach.
SC Magazine
A GitHub Actions workflow could have been used for a command injection vulnerability in Bazel, which had the potential for threat actors to add malicious code into the production environment for projects using the Google open-source product.
CyberNews
Cloudflare has revealed its global network was infiltrated by a sophisticated threat actor
PCMag
Cloudflare says the hacker infiltrated some systems by exploiting credentials that were stolen during the Okta breach last October. However, no Cloudflare customer data was affected.
Bleeping Computer
Cloudflare disclosed today that its internal Atlassian server was breached by a 'nation state' attacker who accessed its Confluence wiki, Jira bug database, and Atlassian Bitbucket source code management system.
The Record
Senior executives at networking giant Cloudflare said a suspected nation-state attacker used credentials stolen from Okta to breach the company’s systems in late November.
Security Affairs
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
SecurityWeek
Guidance on secure use of AI, HHS grant money stolen by hackers, CISA director Jen Easterly target of swatting.
Security Affairs
U.S. CISA adds Atlassian Confluence Data Center and Server Template Injection bug to its Known Exploited Vulnerabilities catalog.
DarkReading
The company hasn't acknowledged responsibility for the incident, although allowing scraping paves the way for dangerous follow-on attacks.
SecurityWeek
PoC code exploiting a critical Fortra GoAnywhere MFT vulnerability gets published one day after public disclosure.
Bleeping Computer
An exposed Trello API allows linking private email addresses with Trello accounts, enabling the creation of millions of data profiles containing both public and private information.
Infosecurity News
Shadowserver reported over 39,000 exploitation attempts from 600 unique IP addresses, mainly Russian
Cyber Security News
Atlassian disclosed a critical vulnerability last week which was related to Remote Code Execution (CVE-2023-22527).
CyberSecurity Dive
Security researchers warn that attacks are rapidly accelerating in recent days.
The Hacker News
Hackers are actively exploiting a critical Atlassian Confluence flaw (CVE-2023-22527) within days of its reveal.
The Record
Multiple new vulnerabilities are being exploited by hackers in recent days, prompting alarm from experts worried about how they will be used by cybercriminals and nation states.
The Record
Reporters Without Borders (RSF) found spyware intrusions from 2021 on the phones of two journalists who are on trial for allegedly defaming a government minister.
SecurityWeek
The Atlassian Confluence vulnerability CVE-2023-22527 is being exploited in the wild just days after it was disclosed.
Bleeping Computer
Security researchers are observing exploitation attempts for the CVE-2023-22527 remote code execution flaw vulnerability that affects outdated versions of Atlassian Confluence servers.
SC Magazine
Security researchers say they recorded several thousands exploit attempts on Atlassian Confluence RCE originating from more than 600 unique IP addresses.
Bleeping Computer
Multiple Atlassian Jira products are experiencing an ongoing outage as of this morning. Users of Jira Work management, Jira Software, Jira Service Management and Jira Product Discovery are facing connection issues.
SecurityWeek
Vulnerability management firm Vicarius raised $30 million in Series B funding, bringing the total funding raised to more than $56 million.
SecurityWeek
Out-of-date Confluence Data Center and Server instances are haunted by a critical vulnerability leading to remote code execution.
The Hacker News
Citrix Patches Critical RCE Vulnerabilities (CVE-2023-6548, CVE-2023-6549) Exploited in Wild.
Security Affairs
Atlassian warns of a critical remote code execution issue in Confluence Data Center and Confluence Server that impacts older versions. Atlassian warns of a critical remote code execution vulnerability, tracked as CVE-2023-22527 (CVSS score 10.0), in Confluence Data Center and Confluence Server that impacts older versions. The vulnerability is a template injection vulnerability that can […]
DarkReading
Rated at a CVSS score of 10, the bug is as bad as it gets, allowing remote cyberattackers unfettered access to corporate environments.
Bleeping Computer
Atlassian Confluence Data Center and Confluence Server are vulnerable to a critical remote code execution (RCE) vulnerability that impacts versions released before December 5, 2023, including out-of-support releases.
CyberSecurity Dive
A patch for a prior vulnerability failed to resolve the root cause of an issue, leading to additional threat activity.
DarkReading
Apache fixed a vulnerability in its OfBiz enterprise resource planning (ERP) framework last month, but attackers and researchers found a way around the patch.
SecurityWeek
Shadowserver sees possible in-the-wild exploitation of a critical Apache OFBiz vulnerability tracked as CVE-2023-49070.
Bleeping Computer
A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept (PoC) exploits.
SecurityWeek
3CX tells customers to temporarily disable SQL Database integration to mitigate a potential vulnerability.
The Hacker News
Microsoft's final Patch Tuesday of 2023 is here, addressing 33 software flaws. This release includes 4 Critical and 29 Important fixes.
Bleeping Computer
Today is Microsoft's December 2023 Patch Tuesday, which includes security updates for a total of 34 flaws and one previously disclosed, unpatched vulnerability in AMD CPUs.
Infosecurity News
Users are urged to patch critical vulnerability in Apache Struts 2 immediately
SC Magazine
Users must install updates to protect against remote code execution (RCE) attacks targeting users of the Australian software firm.
SecurityWeek
Atlassian has released patches for critical-severity remote code execution flaws in Confluence and other products.
Security Affairs
Software giant Atlassian addressed four critical Remote Code Execution (RCE) vulnerabilities in its products.
Bleeping Computer
Atlassian has published security advisories for four critical remote code execution (RCE) vulnerabilities impacting Confluence, Jira, and Bitbucket servers, along with a companion app for macOS.
The Hacker News
Atlassian has released software fixes to address four critical flaws in its software that could lead to remote code execution.
SecurityWeek
Administrators are urged to patch the recent CitrixBleed NetScaler vulnerability as LockBit starts exploiting it.
Bleeping Computer
The Idaho National Laboratory (INL) confirms they suffered a cyberattack after 'SiegedSec' hacktivists leaked stolen human resources data online.
Bleeping Computer
The Kinsing malware operator is actively exploiting the CVE-2023-46604 critical vulnerability in the Apache ActiveMQ open-source message broker to compromise Linux systems.
Latest Hacking News
Researchers have found a new malware exploiting Atlassian Confluence vulnerabilities. Identified as Effluence, the new malware is a backdoor that chains a known vulnerability with a newly reported security flaw affecting Atlassian Confluence servers. Once
The Hacker News
Microsoft has released fixes to address 63 security bugs in its software for the month of November 2023.
The Hacker News
Chinese nation-state hackers are targeting 24 Cambodian government organizations in a long-term espionage campaign.
The Hacker News
Researchers found a persistent backdoor called Effluence in compromised Atlassian Confluence servers. This allows attackers to access resources and da
Trend Micro
We encountered the Cerber ransomware exploiting the Atlassian Confluence vulnerability CVE-2023-22518 in its operations.
CyberSecurity Dive
Back-to-back vulnerabilities in the enterprise content collaboration and management workspace remain under active attack by threat actors.
Infosecurity News
Attempts to deploy Cerber variant on Confluence servers
The Hacker News
Ransomware groups are actively exploiting critical flaws in Atlassian Confluence & Apache ActiveMQ.
The Record
An Atlassian spokesperson said the company had evidence to support what cybersecurity researchers reported over the weekend: A vulnerability affecting the Confluence Data Center and Confluence Server products was being used in cybercrime.
Ars Technica
Atlassian's senior management is all but begging customers to take immediate action.
Bleeping Computer
Attackers are exploiting a recently patched and critical severity Atlassian Confluence authentication bypass flaw to encrypt victims' files using Cerber ransomware.
Cyber Security News
welcome to Cyber Writes' weekly publication - the Threat and Vulnerability Roundup! Get ready to dive into the latest and greatest in cybersecurity, as we bring you the most up-to-date information each week.
DarkReading
In-the-wild exploit activity from dozens of cyberattacker networks is ramping up for the security vulnerability in Confluence, tracked as CVE-2023-22518.
Loading more articles....