Featured Story
Atlassian Confluence Hit by New Actively Exploited Zero-Day – Patch Now
Atlassian has addressed a critical vulnerability (CVE-2023-22515) in Confluence Data Center and Server. The flaw allows attackers to create unauthorized admin accounts and access on-prem Confluence instances. Versions prior to 8.0.0 are unaffected. Customers are urged to upgrade to 8.3.3 or later.
We strongly recommend:
- Updating Confluence to a patched version immediately
- Restricting external access and applying Atlassian’s mitigation steps
- Checking logs for unexpected admin access or account creation
The Approach SOC team is available for compromise assessments and patch verification.
Other Stories
‘Looney Tunables’ Bug Opens Millions of Linux Systems to Root Takeover
A critical vulnerability in glibc’s dynamic loader affects popular Linux distros including Ubuntu, Debian, and Fedora. The flaw can be used to gain root access. While patches are available, IoT and embedded systems may remain vulnerable for longer.
Update systems promptly. Pay close attention to IoT/OT environments, which are often left unpatched. Our team can assist in vulnerability detection and patch audits across Linux environments.
Police Issue “Quishing” Email Warning
“Quishing” or QR-code phishing is gaining traction. Attackers send emails with malicious QR codes to bypass filters and lure users into fake login portals. Police in Northern Ireland have issued an alert following attacks impersonating Microsoft Authenticator.
These QR-based threats bypass traditional protections. We recommend:
- Educating users to never scan QR codes from unexpected emails
- Blocking known quishing URLs via DNS filtering
- Launching mobile phishing awareness campaigns
We can support your team in designing effective internal awareness initiatives.
Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day
Apple has patched CVE-2023-42824, a kernel-level privilege escalation flaw exploited in the wild. iOS/iPadOS 17.0.3 and earlier were affected. The update also includes fixes for a WebRTC buffer overflow bug.
Update all Apple devices immediately. Consider enabling Lockdown Mode for high-risk users. Approach SOC offers mobile device threat monitoring for iOS endpoints.
False Subpoena Emails Circulating in Belgium
A phishing scam is circulating using false police subpoenas with Europol branding. Victims are prompted to pay to settle a supposed offense. Over 8,000 reports have been received.
Never open attachments or reply to suspicious emails. Report such messages to:
Our SOC is available for phishing response and awareness support.
