SEARCH
Archive
Atlassian Warns Confluence Users of Critical Hardcoded Credentials Bug
After an external party publicly disclosed the hardcoded password on Twitter, Atlassian said the issue is "likely to be exploited in the wild."
Russian Actors Focus on Confluence Flaw
The majority of exploitation attempts against the recent Atlassian Confluence bug (CVE-2022-36134) are coming from Russia.
Attackers Exploit Confluence Bug to Drop Ransomware, Webshells
Exploitation of a critical, recently patched Atlassian Confluence bug continues to ramp up.
Zero Day in Atlassian Confluence Under Attack
A newly disclosed zero day in some versions of Atlassian Confluence and Data Center is under attack and being used to install webshells on target servers.
Slow Uptake on Critical Confluence Update
New data shows that enterprises are not updating their Confluence instances to address a critical code execution flaw.