Atlassian Confluence Flaw Exploited to Install Cryptominers

Security companies have reported that threat actors and researchers have actively scanned and exploited the Atlassian Confluence vulnerability.

The news comes just days after researchers publicly released a technical write-up on the vulnerability.

The Confluence Remote Code Execution vulnerability, known as CVE-2021-26084, allows an unauthenticated attacker to remotely execute commands on a vulnerable server.

While the cybersecurity intelligence company Bad Packets had used threat actors from different countries to download and execute PowerShell or Linux shell scripts, the investigation shows that the attacks are mainly to mine cryptocurrencies.

There are some additional concerns that the exploit could also be used for advanced attacks, including spreading the efforts through a network ransomware attack and data exfiltration.

Organizations running a Confluence Server are advised to install the latest updates as soon as possible.

For more information, read the original story in Bleeping Computer.

Atlassian Confluence Flaw Exploited to Install Cryptominers

Top Stories

Canadian startup Kepler launches commercially operational optical satellites

Grok generating non-consensual sexualized images in thousands hourly, researcher finds

Malicious browser extensions are harvesting ChatGPT conversations at massive scale

10 game-changing technology unveiled at CES 2026 so far

Canadian fugitive connected to Desjardins data breach arrested in Spain

SaaStr founder says human sales roles have been replaced by AI agents

Related Articles

Canadian startup Kepler launches commercially operational optical satellites

Dell admits AI isn’t driving PC upgrades as expected

Canada, UK, Australia considering banning X over Grok-generated explicit images

Google expands Gemini shopping features as AI commerce race heats up

TND News Desk

TND News Desk

Jim Love

Follow Us

Popular categories

Tech News Delivered