all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Rapid7-Observed Exploitation of Atlassian Confluence CVE-2023-22518

Add to bookmarks
Nov. 6, 2023, 3:31 p.m. | Rapid7

Rapid7 Blog blog.rapid7.com

Daniel Lydon and Conor Quinn contributed attacker behavior insights to this blog.


As of November 5, 2023, Rapid7 Managed Detection and Response (MDR) is observing exploitation of Atlassian Confluence in multiple customer environments, including for ransomware deployment. We have confirmed that at least some of the exploits are targeting CVE-2023-22518

atlassian atlassian confluence attacker blog confluence contributed customer cve cve-2023-22518 daniel deployment detection detection and response emergent threat response environments exploitation exploits insights managed managed detection managed detection and response mdr november ransomware rapid7 response targeting vulnerability risk management

Visit resource

More from blog.rapid7.com / Rapid7 Blog

Metasploit Weekly Wrap-Up 04/26/24 19 hours ago | blog.rapid7.com
addition application clusters community +20
USF College of Engineering Presents Rapid7 With 2024 Corporate Impact Award 3 days, 22 hours ago | blog.rapid7.com
april award awards beyond +11
Unauthenticated CrushFTP Zero-Day Enables Complete Server Compromise 4 days ago | blog.rapid7.com
access account account access administrator +26
Take Command Summit: Take Breaches from Inevitable to Preventable on May 21 5 days, 2 hours ago | blog.rapid7.com
attack aws breaches command +14
Metasploit Weekly Wrap-Up 04/19/24 1 week ago | blog.rapid7.com
crushftp emergent threat response exploit framework +11
Enforce and Report on PCI DSS v4 Compliance with Rapid7 1 week, 3 days ago | blog.rapid7.com
adoption compliance council data +21
Rapid7 Insight Platform Achieves Level 2 TX-Ramp Authorization 1 week, 3 days ago | blog.rapid7.com
authorization authorization management cloud cloud security +17
Start with threat modelling and let gamers game 2 weeks ago | blog.rapid7.com
availability cloud demand game +20
Metasploit Weekly Wrap-Up 04/12/24 2 weeks ago | blog.rapid7.com
account account takeover active directory authentication +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Principal Security Analyst - Threat Labs (Position located in India) (Remote)

@ KnowBe4, Inc. | Kochi, India
View on infosec-jobs.com

Cyber Security - Cloud Security and Security Architecture - Manager - Multiple Positions - 1500860

@ EY | Dallas, TX, US, 75219
View on infosec-jobs.com

Enterprise Security Architect (Intermediate)

@ Federal Reserve System | Remote - Virginia
View on infosec-jobs.com

Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Associate -- Dallas

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com

Vulnerability Management Team Lead - North Central region (Remote)

@ GuidePoint Security LLC | Remote in the United States
View on infosec-jobs.com
View more jobs