Top alerts and advisories
Russian FSB cyber actor Star Blizzard continues worldwide spear-phishing campaigns
The Russia-based actor is targeting organisations and individuals in the UK and other geographical areas of interest.
Serious vulnerabilities in Atlassian products including Confluence, Jira and Bitbucket
The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) is concerned about serious vulnerabilities in certain Atlassian products (CVE-2023-22522, CVE-2023-22523 and CVE-2022-1471) which are fixed by recent patches. Operators are urged to review Atlassian’s advice and implement recommended mitigations before exploitation begins.
Exploitation of Unitronics Programmable Logic Controllers (PLCs)
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) is concerned about global exploitation of Programmable Logic Controllers (PLC) and is aware of reports of compromise of these devices in Australia. These devices are present in a number of critical sectors such as water, energy, fuel and healthcare.
All alerts and advisories
Multiple Vulnerabilities in Atlassian Confluence Data Center and Server
ASD’s ACSC has received information on multiple vulnerabilities in Atlassian’s Confluence Data Center and Server (CVE-2023-22515 & CVE-2023-22518). Organisations are strongly encouraged to take immediate action to ensure affected instances are patched.
Cisco IOS XE Software Web UI Zero Day Vulnerability
A previously unknown vulnerability (CVE-2023-20198) in the web UI feature of Cisco IOS XE Software could allow a malicious actor to take control of vulnerable devices. All Australian organisations should follow the recommendations published by Cisco.
Important Vulnerabilities in Microsoft’s October 2023 Security Update
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) is concerned about vulnerabilities disclosed in Microsoft’s October 2023 Security Update. Government, businesses and individuals should patch their Microsoft products and apply any recommended mitigations as soon as possible.
Barracuda Email Security Gateway (ESG) malicious activity – additional Indicators of Compromise released
In June 2023, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) became aware of the active exploitation of a vulnerability affecting Barracuda ESG appliances (CVE-2023-2868). New indicators of compromise (IOCs) related to this activity have now been released, to assist organisations to strengthen network defences.
Malware Analysis Report.
A collection of components designed to enable remote access and exfiltrate information from Android phones.
Ivanti Sentry Authentication Bypass Vulnerability
An authentication bypass vulnerability (CVE-2023-38035) has been identified that allows unauthorised access to sensitive APIs which can be used to set configuration parameters on the administrator portal (MICS).
Think you might be impacted?
Cybercrime is the use of a computer or online network to commit crimes such as fraud, online image abuse, identity theft or threats and intimidation.
You can report cybercrime to the police via ReportCyber.