Security News > 2023 > October > Microsoft Warns of North Korean Attacks Exploiting JetBrains TeamCity Flaw
2023-10-19 07:11
North Korean threat actors are actively exploiting a critical security flaw in JetBrains TeamCity to opportunistically breach vulnerable servers, according to Microsoft. The attacks, which entail the exploitation of CVE-2023-42793 (CVSS score: 9.8), have been attributed to Diamond Sleet (aka Labyrinth Chollima) and Onyx Sleet (aka Andariel or Silent Chollima). It's worth noting that both the
News URL
https://thehackernews.com/2023/10/microsoft-warns-of-north-korean-attacks.html
Related news
- Microsoft launches cybersecurity program to tackle attacks, protect rural hospitals (source)
- New Attack Technique Exploits Microsoft Management Console Files (source)
- 'Skeleton Key' attack unlocks the worst of AI, says Microsoft (source)
- Japan warns of attacks linked to North Korean Kimsuky hackers (source)
- Microsoft links Scattered Spider hackers to Qilin ransomware attacks (source)
- KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack (source)
- North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks (source)
- North Korean chap charged for attacks on US hospitals, military, NASA – and even China (source)
- U.S. DoJ Indicts North Korean Hacker for Ransomware Attacks on Hospitals (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-19 | CVE-2023-42793 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible | 9.8 |