Subscribe

Attackers Massively Target Atlassian Confluence Vulnerability

More than 850 unique IP addresses have attempted to exploit a critical zero-day Atlassian’s Confluence vulnerability, barely a week after a security fix was released.

Confluence is a team workspace application that is used by approximately 75,000 customers. Most of Confluence’s work takes place in the cloud, which was not affected by the vulnerability.

The critical Object Graph Navigation Language (OGNL) vulnerability tracked as CVE-2022-26134 was disclosed in the on-premise versions of Confluence Server and Data Center. The flaw could let an attacker remotely execute code in Confluence Data Center and Server.

According to the GreyNoise researchers, the attacks appear to be quite targeted, as attackers appear to check IP addresses to make sure the IP is running Confluence before starting the attack. Some observed exploit activity includes generic reverse shells, payloads with obfuscation.

Researchers explain that the mass exploitation of the vulnerability may be due to several factors, including the ease of exploitation and valuable information stored in the Confluence database, including passwords, proprietary customer information and other confidential data.

The sources for this piece include an article in CIODIVE.

Top Stories

Toyota confirms leak of 240GB of sensitive data in recent hack

Former Google CEO Eric Schmidt makes controversial comments

Study finds 94% of spreadsheets have critical errrors

Study says 94% of spreadsheets contain critical errors

Elon Musk claims DDoS attack caused issues in live-streamed interview with Trump – experts are skeptical

Google anti-trust ruling a financial disaster for Firefox

Related Articles

HP Settles Lawsuit Over Blocking Third-Party Ink With Printer Updates

March 26, 2025 HP has agreed to settle a class-action lawsuit accusing the company of disabling printers that used third-party ink more...

Intel’s contract manufacturing hits setback with quality issues

September 4, 2024 Intel’s contract manufacturing business has encountered a major setback after silicon wafers produced for Broadcom failed to meet more...

Dell has another major round of layoffs

August 8, 2024 Dell has initiated another round of layoffs, affecting a significant number of employees, including long-term company veterans. HR more...

Intel to lay off Over 15,000 employees in major cost-cutting move

August 1, 2024 Intel has announced a significant downsizing of its workforce, laying off over 15,000 employees as part of a more...

Jim Love

Jim Is and author and pud cast host with over 40 years in technology.

Share:
X/Twitter
Linkedin
Blue Sky
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.