HackDig : Dig high-quality web security articles

CISA orders to patch an actively exploited flaw in Confluence servers

US Critical Infrastructure Security Agency (CISA) adds the critical Confluence flaw, tracked as CVE-2022-26138, to its Known Exploited Vulnerabilities Catalog. US CISA has added the recently disclosed Confluence vulnerability, tracked as CVE-2022-26138, to its list of bugs abused in the wild, a flaw that can provide remote attackers with ha
Publish At:2022-07-30 14:10 | Read:319 | Comments:0 | Tags:Breaking News Security Confluence CVE-2022-26138 Hacking hac

A week in security (June 13 – June 19)

Last week on Malwarebytes Labs: Serious vulnerabilities found in ITarian software, patches available for SaaS productsUpdate Chrome now: Four high risk vulnerabilities foundTaking down the IP2Scam tech support campaignDon’t panic! “Unpatchable” Mac vulnerability discoveredIntroducing Malwarebytes Vulnerability Assessment for OneView: How to check for Comm
Publish At:2022-06-20 09:02 | Read:460 | Comments:0 | Tags:A week in security chrome confluence Confluence vulnerabilit

Update now!  Microsoft patches Follina, and many other security updates

The June 2022 Patch Tuesday may go down in history as the day that Follina got patched, but there was a host of other important updates. And not just from Microsoft. Many other software vendors follow the pattern of monthly updates set by the people in Redmond. Microsoft Microsoft released updates to deal with 60 security vulnerabilities. Undoubtedly t
Publish At:2022-06-15 13:00 | Read:1077 | Comments:0 | Tags:Exploits and vulnerabilities adobe Atlassian citrix confluen

“Multiple adversaries” exploiting Confluence vulnerability, warns Microsoft

Microsoft has warned that “multiple adversaries and nation-state actors” are making use of the recent Atlassian Confluence RCE vulnerability. A fix is now available for CVE-2022-26134. It is essential users of Confluence address the patching issue immediately. Confluence vulnerability: Background At the start of June, researchers discovere
Publish At:2022-06-14 09:02 | Read:1408 | Comments:0 | Tags:Exploits and vulnerabilities APT Atlassian confluence nation

Unpatched Atlassian Confluence vulnerability is actively exploited

Researchers found a vulnerability in Atlassian Confluence by conducting an incident response investigation. Atlassian rates the severity level of this vulnerability as critical. Atlassian has issued a security advisory and is working on a fix for the affected products. This qualifies the vulnerability as an actively exploited in the wild zero-day vulnerab
Publish At:2022-06-03 12:59 | Read:1307 | Comments:0 | Tags:Exploits and vulnerabilities Atlassian behinder China Choppe

The top 5 most routinely exploited vulnerabilities of 2021

A joint Cybersecurity Advisory, coauthored by cybersecurity authorities of the United States (CISA, NSA, and FBI), Australia (ACSC), Canada (CCCS), New Zealand (NZ NCSC), and the United Kingdom (NCSC-UK) has detailed the top 15 Common Vulnerabilities and Exposures (CVEs) routinely exploited by malicious cyber actors in 2021, as well as other CVEs frequently
Publish At:2022-04-29 12:48 | Read:1939 | Comments:0 | Tags:Exploits and vulnerabilities cisa confluence cve-2021-26084

A server of the Jenkins project hacked by exploiting a Confluence flaw

The development team behind the Jenkins server disclose a security breach, threat actors deployed a cryptocurrency miner on one of its servers. The development team behind the Jenkins Project disclosed a security breach after threat actors compromised one of their internal servers and installed a cryptocurrency miner. Jenkins is the most popular open-s
Publish At:2021-09-07 09:27 | Read:2953 | Comments:0 | Tags:Breaking News Hacking Atlassian Confluence Cybercrime hackin

USCYBERCOM and CISA warn organizations to fix CVE-2021-26084 Confluence flaw

USCYBERCOM is urging organizations to patch a critical CVE-2021-26084 flaw in Atlassian Confluence Server and Data Center, ahead of the Labor Day weekend.  US Cyber Command (USCYBERCOM) has issued an alert to warn US organizations to address Atlassian Confluence CVE-2021-26084 vulnerability immediately, ahead of the Labor Day weekend. Government exper
Publish At:2021-09-03 18:45 | Read:1623 | Comments:0 | Tags:Breaking News Hacking Security Atlassian Confluence CVE-2021

Attackers are attempting to exploit recently patched Atlassian Confluence CVE-2021-26084 RCE

Threat actors are actively exploiting a recently patched vulnerability in Atlassian’s Confluence enterprise collaboration product. Threat actors were spotted exploiting the CVE-2021-26084 vulnerability in Atlassian’s Confluence enterprise collaboration product a few days after it was patched by the vendor. Last week, Atlassian released security patche
Publish At:2021-09-02 08:53 | Read:3076 | Comments:0 | Tags:Breaking News Hacking Atlassian Confluence hacking news info

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud