A group of attackers are actively exploiting a critical vulnerability in Atlassian's Confluence collaboration software to infect servers with the GandCrab ransomware. Confluence is a Java-based web application that provides a shared wiki-type workspace for enterprise employees and is used by tens of thousands of companies worldwide. The vulnerability, tracked as CVE-2019-3396, is in the software's Widget Connector that allows users to embed content from YouTube, Twitter and other websites into web pages.
[ Get inside the mind of a hacker, learn their motives and their malware. | Sign up for CSO newsletters! ]
To read this article in full, please click here