State-backed Hackers Are Exploiting New 'Critical' Atlassian Zero-Day Bug (techcrunch.com) 18
Microsoft says Chinese state-backed hackers are exploiting a "critical"-rated zero-day vulnerability in Atlassian software to break into customer systems. From a report: The technology giant's threat intelligence team said in a post on X, formerly Twitter, that it has observed a nation-state threat actor it calls Storm-0062 exploiting a recently disclosed critical flaw in Atlassian Confluence Data Center and Server. Microsoft has previously identified Storm-0062 as a China-based state-sponsored hacker.
Microsoft said it observed in-the-wild abuse of the maximum rated 10.0 vulnerability, tracked as CVE-2023-22515, since September 14, some three weeks before Atlassian's public disclosure on October 4. A bug is considered a zero-day when the vendor -- in this case Atlassian -- has zero time to fix the bug before it is exploited. Atlassian updated its advisory this week to confirm it has "evidence to suggest that a known nation-state actor" is exploiting the bug, which the company says could allow a remote attacker to create unauthorized administrator accounts to access Confluence servers. Atlassian's Confluence is a widely popular collaborative wiki system used by corporations around the world to organize and share work.
Microsoft said it observed in-the-wild abuse of the maximum rated 10.0 vulnerability, tracked as CVE-2023-22515, since September 14, some three weeks before Atlassian's public disclosure on October 4. A bug is considered a zero-day when the vendor -- in this case Atlassian -- has zero time to fix the bug before it is exploited. Atlassian updated its advisory this week to confirm it has "evidence to suggest that a known nation-state actor" is exploiting the bug, which the company says could allow a remote attacker to create unauthorized administrator accounts to access Confluence servers. Atlassian's Confluence is a widely popular collaborative wiki system used by corporations around the world to organize and share work.
Just migrated (Score:2)
Re: (Score:1)
... So maybe we dodged a bullet? (I don't know the details: I'm just a user, not involved in administering these tools.)
unless Atlassian Cloud uses that software in the back end...
Re: Just migrated (Score:3)
Confluence alternatives? (Score:5, Interesting)
Are there any decent Confluence alternatives? FOSS preferred.
I run an Confluence internally. Atlassian is forcing everyone to go with the cloud offering unless you pay $25000 a year or more. Confluence is pricing itself out of the market, you are really doing something wrong when you make Oracle look cheap.
Re:Confluence alternatives? (Score:4, Insightful)
The software that runs Wikipedia is open source. https://www.mediawiki.org/wiki/Download
Or another alternative that claims to be able to migrate confluence data is https://bluespice.com/buy/prices/configure-your-price/ , but it isn't that much cheaper.
We are going to move from the server version to the data center version. It is a little more expensive, but we can keep the installation onsite.
Re: (Score:2)
Bluespice looks much cheaper than Confluence. Thanks for the tip.
Re: (Score:2)
There used to be a free version of BlueSpice with no support. Is that no longer offered? It's basically just a bunch of MediaWiki plugins.
Re: (Score:3)
Re: (Score:2)
Don't know what you consider a viable alternative but I like https://www.dokuwiki.org/dokuw... [dokuwiki.org] and https://www.bookstackapp.com/ [bookstackapp.com].
I just put in BookStack for our small business.. It's decent enough.
Re: Confluence alternatives? (Score:2)
Itâ(TM)s very very far from confluence tho
Re:Confluence alternatives? (Score:5, Funny)
you are really doing something wrong when you make Oracle look cheap
Heh, there was a meme that went around the block a few years ago, image of a ransomware screen, with text, "Greetings! Instead of encrypting your files, we have installed hundreds of hidden copies of Oracle all over your environment. Pay us 10 BTC and we will remove them. If you do not pay, we will report you to Oracle for running unlicensed software."
Re: (Score:2)
Re: (Score:2)
Nuclino is pretty decent and not too expensive: https://www.nuclino.com/ [nuclino.com] - works well for the "normals", and is good enough for more power users too. Not sure about integrations with other tools though.
I haven't been able to use it "in anger" as the world and his wife seems to be wedded to Jira/Confluence. I can see the attraction, but there are other ways to do half-decent ticketing (at least for 'simple' shops - enterprises with a zillion crazy customisations will have to stick with Jira). Confluence was
Solution (Score:2)
Create a story to that contains a task to delete the entire Atlassian epic.
Re: (Score:2)
100%
Chinese state-backed? (Score:1)
How do they know this?