GandCrab attackers exploit recently patched Confluence vulnerability

A group of attackers are actively exploiting a critical vulnerability in Atlassian’s Confluence collaboration software to infect servers with the GandCrab ransomware. Confluence is a Java-based web application that provides a shared wiki-type workspace for enterprise employees and is used by tens of thousands of companies worldwide. The vulnerability, tracked as CVE-2019-3396, is in the software’s Widget Connector that allows users to embed content from YouTube, Twitter and other websites into web pages.

Story added 24. April 2019, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Army defends its mobile device security plan
Bromium aims to isolate tasks rather than walling off PCs
Cybersecurity M&A Roundup: 31 Deals Announced in January 2022
How network automation can speed deployments and improve security
A New Kind of Ransomware Tsunami Hits Hundreds of Companies
U.S. Intelligence Community Highlights Cyber Risks in Worldwide Threat Assessment
Microsoft Office CVE-2016-3278 Memory Corruption Vulnerability
Google kills Glass Enterprise, but big tech’s AR dreams live on
Mark Zuckerberg: Facebook’s future is messaging, encryption, and privacy
ICS Patch Tuesday: Siemens, Schneider Electric Fix 50 Vulnerabilities

GandCrab attackers exploit recently patched Confluence vulnerability

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts