Cloud Security, Vulnerability Management

Warnings issued on critical Atlassian security flaws

Atlassian has sounded the alarm on potentially exploited critical security flaws impacting several of its products, reports The Record, a news site by cybersecurity firm Recorded Future. Confluence Server and Confluence Data Center's Questions For Confluence app is affected with a flaw, tracked as CVE-2022-26138, which could have already been exploited by remote attackers with hardcoded passwords to enter Confluence and access certain pages, according to Atlassian, which urged immediate remediation of the vulnerability through deactivating or removing the "disabledsystemuser" account. Bugcrowd founder and Chief Technology Officer Casey Ellis doubled down on the need for urgent action on the vulnerability. Two other critical flaws, tracked as CVE-2022-26136 and CVE-2022-26137, could also be exploited by remote attackers to evade Servlet Filters, said Atlassian in an earlier advisory. "Atlassian recommends checking the integrity of the application filesystem, for example, comparison of artifacts in their current state with recent backups to see if there are any unexpected differences," the company added.

Related

LockBit-leaked DC city agency data from third party

Washington, D.C.'s Department of Insurance, Securities and Banking has disclosed that 800GB of data claimed to have been stolen by the LockBit ransomware operation was obtained from an attack against third-party software provider Tyler Technologies following the ransomware gang's threats to expose 1GB of the exfiltrated data to coerce the agency into providing the demanded ransom, reports The Record, a news site by cybersecurity firm Recorded Future.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.