<img src="https://certify.alexametrics.com/atrk.gif?account=kla4t1zDGU20kU" style="display:none" height="1" width="1" alt="">
Contact us
Free Quickscan →
Cybersprint Digital Risk Protection Platform

The Cybersprint Platform

We’ve developed a unique Digital Risk Protection SaaS-platform that works 24/7 as an automated ethical hacker, continuously in search of online vulnerabilities. Read more

Cybersprint provides realtime insights

Make the world more cyber-secure

Cybersprint protects organisations by providing real-time insights into their online footprint. Read more

Critical Security Issue Jira (CVE-2019-11581) forms threat

by Cybersprint News Jul 18, 2019

Atlassian has published a security advisory of a JIRA vulnerability found last week (CVE-2019-11581) that has affected many organisations worldwide.

The problem with this cyber threat is that malicious actors can execute remote commands (RCE).

Atlassian advises to turn off the Contact Administrator's form immediately or to upgrade to a fixed version as soon as possible.

While Jira ships by default with this feature OFF, you can check to make sure it is disabled if you are a Jira administrator.

screenshot Jira vulnerability found

5 steps to secure:


  1. Choose icon settings > System
  2. Select General Configuration to open the Administration page. 
  3. Click the Edit Settings button
  4. Scroll down to the Contact Administrators Form and select OFF
  5. Scroll to the bottom of the page and click the Update button for this setting to take affect.

    We recommend that you review the complete advisory in Jira Server - Template injection in various resources - CVE-2019-11581

Besides this recommendation, the Cybersprint research team did some extra digging and found that many European organisations and companies are now potentially vulnerable to this threat.

Alert on current Digital Risks

By simply using the brand or organisation's name our unique Digital Risk Protection SaaS-platform detects external digital risks at an early stage.

The platform works 24/7 is continuously in search of current online vulnerabilities on many different channels.  We implemented many of the same techniques hackers use when we search for online vulnerabilities and open doors. An important difference being that our platform uses Artificial Intelligence (AI), machine learning, Data Visualisation and Big Data to work faster than hackers and to stay ahead of cyber criminals. This way we can automatically map any online footprint and timely detect cyber threats.

We help secure our customers by timely notifying them through our Digital Risk Protection Platform on incidents like these and others. One of the many benefits of these proactive alerts is that our customers are able to mitigate digital risks faster and thus become more cyber resilient.

Please contact Cybersprint today and request a Quickscan to discover your online footprint and reduce your online attack surface.

 

Meet Cybersprint at RSA Conference 2020

From 24 to 28 February, Cybersprint is present at RSA Conference in San Francisco in the Holland IT Security House. Our team is ready to tell you how to fight your organisation’s digital threats and how to gain insights into your online footprint at stand 2057. Interested in meeting us there? Reserve a timeslot with us by submitting the form.

read more

Citrix vulnerability webinar 21/1: Current status and advice

The recent discovery of the Citrix vulnerability and the impact it has on thousands of organisations has been widely covered in the media over the past days. No patch has been released as of yet, and the effectiveness of the suggested work-around has not yet been fully verified. In fact, there are Citrix versions for which the work-around is confirmed to be ineffective. 

read more

EXCLUSIVE NORDIC BANKING TOUR: New insights in digital risks for finance

Now that the year 2020 has started you probably could use new inspiration on asset allocation. How much money will be spent on new investments, projects and collaborations? These are no subjects for rash decisions. And it’s important to look at all aspects of the deal - that includes cyber security. The ongoing rise of digitalisation and ever-evolving methods criminals use forces banks to be constantly aware of new cyber threats to their organisation. To help banks stay in control of their online footprint, Cybersprint organises exclusive round table sessions in the Nordics. Register here.

read more

Do you have a question?

Our experts have the answers

Contact us