"Ransomware Attack on JetBrains TeamCity Exposes Critical Vulnerability"

March 7, 2024 at 04:34 PM

•

1 min read

"Ransomware Attack on JetBrains TeamCity Exposes Critical Vulnerability" — Photo: The Register

TL;DR Summary

Security researchers have observed active exploit attempts using vulnerabilities in JetBrains' TeamCity, leading to ransomware deployment. The vulnerabilities are being actively exploited in the wild, with attackers breaking into CI/CD servers and creating hundreds of accounts for later use. Due to uncoordinated disclosure between JetBrains and researchers at Rapid7, all the information required for an attacker to develop a working exploit was made public on the same day the patches were released. This has sparked a debate within the cybersecurity community about the best approach to vulnerability disclosure. Users of on-prem versions of TeamCity prior to 2023.11.4 are advised to apply the patches immediately to mitigate the risk of exploitation.

Topics:technology #cybersecurity #jetbrains #ransomware #teamcity #vulnerability-disclosure

Share this article

JetBrains TeamCity under attack by ransomware thugs after disclosure mess The Register
Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure SecurityWeek
JetBrains TeamCity critical flaw exploited; 1.4k servers compromised SC Media
CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability The Hacker News
TeamCity supply chain bugs receive massive exploitation CSO Online

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

86%

763 → 110 words

Want the full story? Read the original article

Read on The Register

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights