US Cyber Command (USCYBERCOM) has issued a rare alert today urging US organizations to patch a massively exploited Atlassian Confluence critical vulnerability immediately.
"Mass exploitation of Atlassian Confluence CVE-2021-26084 is ongoing and expected to accelerate,"
said Cyber National Mission Force (CNMF).
The USCYBERCOM unit also stressed the importance of patching vulnerable Confluence servers as soon as possible: "Please patch immediately if you haven’t already—
this cannot wait until after the weekend."
Atlassian warns of exploit for Confluence data wiping bug, get patching
Synology hurries out patches for zero-days exploited at Pwn2Own
US Sanctions Affiliates of Russia-Based LockBit Ransomware Group
Anyone Can Buy Data Tracking US Soldiers and Spies to Nuclear Vaults and Brothels in Germany
Deep Research: Trend Micro VSAPI and ATSE Release History and Modus Operandi