Critical Confluence and ActiveMQ Vulnerabilities Exploited by Ransomware Groups
Multiple ransomware groups are exploiting critical vulnerabilities in Atlassian Confluence and Apache ActiveMQ, as confirmed by cybersecurity firms like Rapid7, Arctic Wolf Labs, and Huntress. Rapid7 detected the exploitation of CVE-2023-22518 and CVE-2023-22515 in customer environments, leading to Cerber ransomware deployment. These vulnerabilities allow unauthorized creation of Confluence administrator accounts, compromising confidentiality, integrity, and availability. …
Critical Confluence and ActiveMQ Vulnerabilities Exploited by Ransomware Groups Read More »