New year is going to be interesting for security aspects

Hi! 

image.png

As we know the latest security patches is good option.

Unfortunately, now the exploits are creating much faster as expected. 

 

If you're forget to upgrade your infra please do it. Otherwise it is too risky to have not latest releases. 

Windows:

Linux: 

If you want find the exploit to review your infra you can find in github the exploit.

 

Not so long time ago, one of my customer lost an infrastructure of CI/CD and Jira instances. 

Because the attack was used 1 vuln app for Jira 8.5, and then made a privileges escalation trick from jira user to root, and uploaded the shell code. 

And after instance by instance was used for spamming, crypto mining and after ciphering backups (good idea btw). 

 

Please, be aware if you instance exposed through internet.

 

Conclusion:

Don't be shy and do upgrades, and improve upgrade procedure.

 

 

P.S. I think time to upgrade to latest your Atlassian products includes apps as well :) Except cloud :)

 

 

 

Cheers,

Gonchik Tsymzhitov

2 comments

Comment

Log in or Sign up to comment
Jimmy Seddon
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
February 13, 2021

This is a really good point @Gonchik Tsymzhitov!  Some of the dumbest breaches have been caused by a lack of taking the time to keep everything up to date.

Like Gonchik Tsymzhitov likes this
Gonchik Tsymzhitov
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
February 13, 2021

@Jimmy Seddon  Well, about explouts and 0days, of course it's next step. 

Unfortunately, in the world a lot of script kiddies who automate the Metasploit and use masscan to investigate internet :( 

TAGS
AUG Leaders

Atlassian Community Events