Microsoft says Chinese state-backed hackers are exploiting a “critical”-rated zero-day vulnerability in Atlassian software to break into customer systems. From a report: The technology giant’s threat intelligence team said in a post on X, formerly Twitter, that it has observed a nation-state threat actor it calls Storm-0062 exploiting a recently disclosed critical flaw in Atlassian Confluence Data Center and Server. Microsoft has previously identified Storm-0062 as a China-based state-sponsored hacker.

Microsoft said it observed in-the-wild abuse of the maximum rated 10.0 vulnerability, tracked as CVE-2023-22515, since September 14, some three weeks before Atlassian’s public disclosure on October 4. A bug is considered a zero-day when the vendor — in this case Atlassian — has zero time to fix the bug before it is exploited. Atlassian updated its advisory this week to confirm it has “evidence to suggest that a known nation-state actor” is exploiting the bug, which the company says could allow a remote attacker to create unauthorized administrator accounts to access Confluence servers. Atlassian’s Confluence is a widely popular collaborative wiki system used by corporations around the world to organize and share work.

Read more of this story at Slashdot.

Source: Slashdot – State-backed Hackers Are Exploiting New ‘Critical’ Atlassian Zero-Day Bug