Atlassian, the enterprise software business that powers finance companies like BlackRock and Janus Capital, has had a cybersecurity vulnerability in its systems exposed on Twitter.
The Twitter user SwiftOnSecurity in seemingly unintentionally revealed the zero-day weakness on Tuesday December 3, The Register reported.
The weakness was found in how its cloud service connects with local applications. When people use the local app, Atlassian provided a domain that resolved to a local server with a common SSL certificate for the Australian companies cloud service. That enable the user to work locally but then to save the files back to Atlassian’s Confluence software.
The local and the cloud software are connected through a browser using a domain https://atlassian-domain-for-localhost-connections-only.com.
As Thomas Claburn, journalist at The Register, explained, “The problem with this arrangement is that anyone with sufficient technical knowledge could copy the SSL key and use it to conduct a man-in-the-middle attack that could allow an attacker to redirect app traffic to a malicious site.”
Atlassian is reportedly looking to fix the bug.
Copyright © 2018 RegTech Analyst
