Welcome to our

Cyber Security News Aggregator

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

First slide label

Some representative placeholder content for the first slide.

Second slide label

Some representative placeholder content for the second slide.

Third slide label

Some representative placeholder content for the third slide.

Exploit Attempts for Unknown Password Reset Vulnerability, (Wed, Feb 28th)

published on 2024-02-28 14:36:16 UTC by
Content:

My Google skills let me down this morning, attempting to figure out which vulnerability is exactly being exploited by these "forgotuserpassword.action" scans. Maybe someone else can help me out here. Based on the scans, I do not believe this is a "normal" password reset vulnerability. Atlassian's Confluence is one suspect using a URL scheme like this, but there may be others. Here are some of the URLs:

Article: Exploit Attempts for Unknown Password Reset Vulnerability, (Wed, Feb 28th) - published 7 months ago.

https://isc.sans.edu/diary/rss/30698
Published: 2024 02 28 14:36:16
Received: 2024 02 28 15:35:40
Feed: SANS Internet Storm Center, InfoCON: green
Source: SANS Internet Storm Center, InfoCON: green
Category: Alerts
Topic: Vulnerabilities
Views: 1