Colleagues,
If you are responsible for a Confluence installation, please immediately upgrade to one of the following versions:
- 6.13.23
- 7.11.6
- 7.12.5
- 7.13.0
- 7.4.11
If you are unable to upgrade, please follow the mitigation instructions in the Confluence Security Advisory [1].
If you are unable to upgrade or apply mitigations, please email us at uiso@iu.edu to discuss other compensating controls.
Background
In the past two days there have been at least two successful compromises of Atlassian Confluence systems at IU. These compromises have exploited a recently announced vulnerability to install Bitcoin miners on the impacted systems.
The University Information Security Office (UISO) is working to identify systems which appear to be running Confluence and will be sending targeted notifications to system owners as soon as possible. Until those notifications are distributed, we’re asking for your help to prevent additional compromises.
Please remember to immediately report all suspected and successful compromises to it-incident@iu.edu.
Thanks for your continued partnership in protecting IU.
-IT Community Partnerships on behalf of the University Information Security Office
[1] https://confluence.atlassian.com/doc/confluence-security-advisory-2021-08-25-1077906215.html