An Unauthenticated RCE Gold Rush: A Look at Attacks Exploiting Confluence CVE-2019-3396
released on 2019-05-17 @ 04:13:08 PM
The recent Confluence vulnerability (CVE-2019-3396) created a gold rush for threat actors. Attackers are exploiting it for cryptojacking, DDoS attacks, and ransomware. Lacework Labs observed some of these attacks in the wild and via their honeypots. In the referenced blog they will share interesting details from the attacks.