Introduction

This chapter discusses a critical template injection vulnerability in Atlassian's Confluence Data Center and Server products, which has the potential for remote code execution by unauthenticated attackers. Atlassian strongly recommends updating to the latest version to mitigate the risk.

Play episode from 00:00

chevron_right

Transcript

chevron_right

Transcript

Episode notes

Atlassian issues critical updates. CISA and the FBI warn of AndroxGh0st. A GPU vulnerability hits major manufacturers. A Foxconn subsidiary in Taiwan gets hacked. Australians suffer breached credit cards through credential stuffing. A parade of horrible hackers and scammers. CISO accountability is highlighted at ShmooCon. Cybersecurity VC funding plummets. On the Learning Layer, N2K’s Executive Director of Product Innovation Sam Meisenberg lets us in on an A+ tutoring session. Don’t ask ChatGPT to handle your Amazon product listings.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

On the Learning Layer with N2K’s Executive Director of Product Innovation Sam Meisenberg lets us in on an A+ tutoring session he held with Jaden Dicks.

Selected Reading

Atlassian’s Confluence Data Center and Server Affected by Critical RCE Vulnerability, CVE-2023-22527: Patch Now (SOCRadar)

FBI, CISA warn of AndroxGh0st botnet for victim identification and exploitation (Security Affairs)

A new vulnerability affecting Apple, AMD, and Qualcomm GPUs could expose AI data (TechSpot)

Taiwan’s Foxconn subsidiary faces cyberattack (Taiwan News)

15,000 Aussies Affected After Binge, The Iconic Hacked (Pedestrian)

Hackers post disturbing videos to online forum used by UC Irvine students (ABC7)

Heartless scammers prey on hundreds of lost pet owners, demanding ransoms or else… (Bitdefender)

As hacks worsen, SEC turns up the heat on CISOs (TechCrunch)

Cybersecurity Startup Funding Hits 5-Year Low, Drops 50% From 2022 (Crunchbase)

Amazon Is Selling Products With AI-Generated Names Like "I Cannot Fulfill This Request It Goes Against OpenAI Use Policy" (Futurism)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!

Get the app

Home Top podcasts Popular guests Top books