Nation-State Hackers Exploit Critical Atlassian Zero-Day Vulnerability, Microsoft Warns
TL;DR Summary
Microsoft has reported that state-backed hackers, identified as Storm-0062 and believed to be China-based, are exploiting a critical zero-day vulnerability in Atlassian software. The vulnerability, tracked as CVE-2023-22515, allows remote attackers to create unauthorized administrator accounts and gain access to Confluence servers. Atlassian has released a patch for the flaw and is working closely with Microsoft on the investigation. The scale of customer exploitation and any data theft remains unclear at this time. Users are urged to upgrade their software to protect against the exploit.
Topics:business#atlassian#cybersecurity#data-breach#microsoft#state-backed-hackers#zero-day-vulnerability
- State-backed hackers are exploiting new ‘critical’ Atlassian zero-day bug TechCrunch
- Microsoft: State hackers exploiting Confluence zero-day since September BleepingComputer
- Microsoft: China's Behind Atlassian Confluence Attacks; PoCs Available DARKReading
- Microsoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence Vulnerability The Hacker News
- Chinese gov't hackers exploiting new Atlassian vulnerability, Microsoft says The Record from Recorded Future News
- View Full Coverage on Google News
Reading Insights
Total Reads
0
Unique Readers
0
Time Saved
2 min
vs 3 min read
Condensed
80%
427 → 85 words
Want the full story? Read the original article
Read on TechCrunch