HIGH ALERT – Increased cyber threat activity targeting Snowflake customers

Background / What’s happened?

The ASD’s ACSC is tracking increased cyber threat activity relating to Snowflake customer environments.

Mitigation / How do I stay secure?

Australian organisations who utilise Snowflake should reset credentials for active accounts, disable non-active accounts, enable Multi-Factor Authentication (MFA), and review user activity.

HIGH ALERT- vulnerability in Check Points’ Quantum Security Gateway devices

The ASD’s ACSC is aware of CVE-2024-24919 that enables access of sensitive information to an unauthorised actor.

Background / What’s happened?

The ASD’s ACSC is tracking a vulnerability in Check Points’ Quantum Security Gateway devices.

The ASD’s ACSC is aware of active exploitation of vulnerable instances.

HIGH ALERT

Serious vulnerabilities in Atlassian products including Confluence, Jira and Bitbucket This Alert is relevant to Australians who use Atlassian products including Confluence, Jira and Bitbucket. Background / What has happened? Atlassian have released patches for security vulnerabilities in certain products including many versions of Confluence, Jira and Bitbucket. Three of…

CRITICAL ALERT

Critical Vulnerability in popular Java framework Apache Struts2Critical This Alert is relevant to Australians who use Java applications which use the Struts2 Framework. Multiple enterprise Java applications use this framework and are likely at risk. This alert is intended to be understood by slightly more technical users. Users are encouraged…