Trust & Security

Overview The Health Insurance Portability and Accountability Act (HIPAA) is a federal law developed by the U.S. Department of Health and Human Services and was established in 1996. It was...

Hema Vadodaria published an article 5 0 January 19, 2024

FYI, I have consistently been getting these DMARC fail notifications from automated community notifications for a couple of weeks at least. They are almost certainly generated by replies to messages ...

Justin Warwick started a discussion 1 1 January 19, 2024

Overview The International Organization for Standardization (ISO) is an independent, non-governmental international organization with a membership of 167 national standards bodies. ISO br...

Sanika Bhurke published an article 6 0 January 16, 2024

Take immediate action to protect your instance We have discovered that Confluence Data Center and Server customers on out-of-date versions including 8.4.5 are vulnerable to a remote code execution ...

Emir Mutlu published an article 9 0 January 16, 2024

At the start of each quarter, we publish a roll-up report from each of our Bug Bounty programs to give our customers a view of the progress of the program and the vulnerabilities. For many customers,...

Ben Howe published an article 4 0 January 15, 2024

Overview System and Organization Controls (SOC) Reports are independent third-party examination reports that provide detailed information and assurance about controls in place at service organizati...

Sanika Bhurke published an article 10 12 January 10, 2024

05/02/2024 Update: this feature is now generally available!   Hello Trust & Security Community! We know Marketplace apps are a key part of your Atlassian solution, but depending on you...

Angelina Ignatova published an article 19 6 January 9, 2024

Hi community! My name is Steph and I’m from the Cloud Security team at Atlassian. We're working on a feature that will let customers classify their data according to their company policies or indus...

Steph Kakatsos started a discussion 0 0 January 9, 2024

First of all the Vulnerability portal (https://www.atlassian.com/trust/data-protection/vulnerabilities) is a great starting point to keep track of vulnerabilities. Recently I've played around with...

Tim Eddelbüttel started a discussion 5 2 January 9, 2024

My company is undergoing external audits and we need security compliance attestations from all of our vendors.  We have the Jan2023 SOC2 Bridge report from Atlassian but now require an updated C...

Tiffany Ramzy started a discussion 7 5 January 5, 2024

Hi, Does the Security vulnerability CVE-2023-49070 affect Jira Data Center running on v9.4.2? If so, is there a workaround for this security vulnerability? Reference - https://www.bleepingcomp...

Asokan S started a discussion 0 2 January 2, 2024

REF CVE-2023-51467

fernanda_valverde started a discussion 1 2 January 2, 2024

Hello,    We use Jira et Confluence Data Center.  I saw the vulnerability CVE-2023-51467, regarding to Apache OFBiz. Our Atlassian Products are impacted? Do they use ...

Ana Martinez Arroyo started a discussion 4 3 January 1, 2024

I found a freelancer job on social media and I contact them via telegram. This is what he said." My name is Sudhish Keertha, I am from Abu Dhabi UAE but working here in USA, I am recruitment manager ...

Kavindya Sandeepani started a discussion 0 15 December 16, 2023

We are so glad to know that some of the Atlassian products are now HIPAA compliant for Standard users. Knowing this, we started a BAA request with Atlassian so we can implemment Jira as our ITSM. Iss...

mmogollon started a discussion 0 6 December 12, 2023

Hello community, We have discovered four critical vulnerabilities impacting customers of the products listed below. All four vulnerabilities carry a critical CVSS score of 9.0 or higher, and custom...

Jodie Vlassis published an article 5 2 December 5, 2023

Hi Atlassian Community, I’m Dimitris, a Senior Product Marketing Manager at Adaptavist.  My team is currently conducting research to improve one of our Jira apps — Encryption for Jira — and we...

Dimitris Sylligardakis started a discussion 10 0 November 23, 2023

...ttestations to help them understand the controls we have in place so they can use our products in a manner compliant with their applicable regulations. Staying true to our value, we pride ourselves with how t...

Jodie Vlassis published an article 8 0 November 20, 2023

I have read all the reports on the internet and I could see that the massive attacks on Confluence happened because the attackers learned pretty quickly how to exploit this vulnerability. As a result...

Roland Zosso started a discussion 2 6 November 14, 2023

Data Protection: Protect PII, anonymize users, delete issue history, comply with GDPR, DSGVO, and HIPAA.    Does anyone have an app that they prefer to use to search for PII, etc? Or how ...

Becky Murray started a discussion 0 0 November 10, 2023

Hi community! My name is Tara and I’m from the Cloud Security team at Atlassian. We’ve introduced a new feature called data security policies that allow organization admins to prevent the inappropr...

Tara Fernandez started a discussion 7 2 November 9, 2023

Hi community! My name is Caleb Zeringue and I’m from the Cloud Security team at Atlassian. NOTE *You may have seen a post from me earlier this week, but we’ve updated our time slots and simpl...

Caleb Zeringue published an article 3 0 November 1, 2023

We are excited to announce that Bring Your Own Keys (BYOK) encryption for Jira Software is now available to all customers with Enterprise plans.   For customers who are required to apply BYO...

Hui Ren published an article 13 5 October 31, 2023

Hello Community, 06 Nov 2023 UPDATE As part of Atlassian's ongoing monitoring and investigation of this CVE, we observed several active exploits and reports of threat actors using ransomware. We&...

Jodie Vlassis published an article 6 1 October 30, 2023

At the start of each quarter, we publish a roll-up report from each of our Bug Bounty programs to give our customers a view of the progress of the program and the vulnerabilities. For many customers,...

Ben Howe published an article 2 0 October 30, 2023