An RCE vulnerability in all versions of the popular Confluence collaboration platform can be abused in credential harvesting, cyber espionage, and network backdoor attacks.
| LATEST SECURITY NEWS & COMMENTARY | Actively Exploited Atlassian Zero-Day Bug Allows Full System Takeover A remote code execution (RCE) vulnerability in all versions of the popular Confluence collaboration platform can be abused in credential harvesting, cyber espionage, and network backdoor attacks. Microsoft Disables Iran-Linked Lebanese Hacking Group Polonium The attack on Israeli organizations is the latest in a long line of attempts to compromise supply chains, as the APT looks to leverage that access to target a multitude of potential victims. Why Network Object Management Is Critical for Managing Multicloud Network Security If you want your IT and security administrators to get buried in trivial workloads and productivity bottlenecks, having poor network object management is a great way to accomplish that. FDA: Patch Illumina DNA Sequencing Instruments, Stat A critical security bug could lead to remote device control, altered lab results, and more, putting patients in danger, agency warns. YourCyanide Ransomware Propagates With PasteBin, Discord, Microsoft Links The latest iteration of CMD-based ransomware is sophisticated and tricky to detect – and integrates token theft and worming capabilities into its feature set. MORE NEWS / MORE COMMENTARY | |
| EDITORS' CHOICE Meet the 10 Finalists in the RSA Conference Innovation Sandbox This year's finalists tackle such vital security concerns as permissions management, software supply chain vulnerability, and data governance. Winners will be announced June 6. LATEST FROM THE EDGE For Ransomware, Speed Matters Someone interested in putting together a ransomware campaign has to consider several factors. The LockBit group touts its speed over competing families to attract potential buyers for its ransowmare-as-a-service. LATEST FROM DR TECHNOLOGY Hunting for Threats Using Network Traffic Flows SeclarityIO's NetworkSage platform analyzes network traffic data to identify attacks before they become real problems. |
| |
|
Dark Reading Daily -- Published By Dark Reading Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| To update your profile, change your e-mail address, or unsubscribe, click here. | To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | We take your privacy very seriously. Please review our Privacy Statement. |
|
|