Atlassian is actively exploited to harm corporate networks

Experts have warned that two widely used Atlassian Bitbucket tools – the server and the data center – carry a very serious flaw that allows remote attackers with read permissions to Bitbucket’s public or private repository to execute arbitrary code.

The flaw is being actively used in the wild, the US Cybersecurity and Infrastructure Agency (CISA) notes, and companies using the tools are urged to patch. (Opens in a new tab) their endpoints (Opens in a new tab) Immediately. Internet traffic analysts GreyNoise confirmed CISA’s findings, saying it had found evidence of exploiting the flaw.

Source link

Write a Reply or Comment

Your email address will not be published. Required fields are marked *