Multiple cybersecurity organisations have noticed exploitation attempts against a high-severity vulnerability in Atlassian Confluence Data Center and Confluence Server. The vulnerability was disclosed and patched in a security advisory on January 16th. It allows an unauthenticated attacker to execute remote code. Despite warnings to patch the flaw, over 11,000 vulnerable instances remained. Exploitation activity increased after proof-of-concept exploits were released, although so far no successful attempts have been reported. Atlassian has advised users to update and check their systems for signs of compromise.
Botnets leverage decade-old D-Link vulnerabilities in new attack campaigns
A new report from FortiGuard Labs has revealed the activities of two botnets, FICORA and CAPSAICIN, exploiting vulnerabilities in legacy D-Link devices. The report stresses