Key Takeaways Arctic Wolf Labs has observed CVE-2023-22527 being exploited to deploy C3RB3R ransomware. Several threat actors are exploiting CVE-2023-22527 to deploy payloads for cryptocurrency mining and remote access trojans. Background On January 4, 2024, Atlassian disclosed CVE-2023-22527, a template injection vulnerability affecting Confluence Data Center and Server versions 8.0.0 to 8.5.3. The vulnerability allows … Exploitation of Confluence Server Vulnerability CVE-2023-22527 Leading to C3RB3R Ransomware
Article Link: Exploitation of Confluence Server Vulnerability CVE-2023-22527 Leading to C3RB3R Ransomware - Arctic Wolf