"Critical Atlassian Confluence Bug Exploited in Cerber Ransomware Attacks"

Attackers are exploiting the recently patched critical Atlassian Confluence authentication bypass flaw to encrypt victims' files in Cerber ransomware attacks. According to Atlassian, the bug, which is tracked as CVE-2023-22518, is an improper authorization vulnerability. It impacts all versions of the Confluence Data Center and Confluence Server software. Cerber ransomware was also used in attacks on Atlassian Confluence servers two years ago, taking advantage of a Remote Code Execution (RCE) vulnerability, tracked as CVE-2021-26084, which had previously been used to install cryptocurrency miners. This article continues to discuss the exploitation of the critical Atlassian Confluence authentication bypass flaw in Cerber ransomware attacks.

Bleeping Computer reports "Critical Atlassian Confluence Bug Exploited in Cerber Ransomware Attacks"

Submitted by grigby1