all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Microsoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence Vulnerability

Add to bookmarks
Oct. 11, 2023, 4:12 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Microsoft has linked the exploitation of a recently disclosed critical flaw in Atlassian Confluence Data Center and Server to a nation-state actor it tracks as Storm-0062 (aka DarkShadow or Oro0lxy).
The tech giant's threat intelligence team said it observed in-the-wild abuse of the vulnerability since September 14, 2023.
"CVE-2023-22515 is a critical privilege escalation vulnerability in

abuse actor atlassian atlassian confluence center confluence confluence data center confluence vulnerability critical critical flaw cve cve-2023-22515 data data center exploitation exploiting flaw giant hackers intelligence microsoft nation nation-state actor nation-state hackers september server state storm storm-0062 team tech threat threat intelligence vulnerability

Visit resource

More from thehackernews.com / The Hacker News

Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw 2 hours ago | thehackernews.com
android android apps app applications +32
Ukrainian REvil Hacker Sentenced to 13 Years and Ordered to Pay $16 Million 4 hours ago | thehackernews.com
attacks hacker national pay +10
When is One Vulnerability Scanner Not Enough? 6 hours ago | thehackernews.com
antivirus antivirus software benefits concept +18
Dropbox Discloses Breach of Digital Signature Service Affecting All Users 6 hours ago | thehackernews.com
account breach breached cloud +23
New "Goldoon" Botnet Targets D-Link Routers With Decade-Old Flaw 6 hours ago | thehackernews.com
attackers attacks botnet called +18
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability 10 hours ago | thehackernews.com
account account takeover agency catalog +28
New Cuttlefish Malware Hijacks Router Connections, Sniffs for Cloud Credentials 11 hours ago | thehackernews.com
authentication called cloud connections +24
Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds 1 day, 2 hours ago | thehackernews.com
analysis bitcoin blockchain clusters +19
Android Malware Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers 1 day, 3 hours ago | thehackernews.com
android android devices android malware binary +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States
View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote
View on infosec-jobs.com
View more jobs