Almost thought I had a good way to move #org documents into #confluance from converting them into #html. They used to have a built in HTML renderer but I suppose they couldn't fix it on the cloud and disabled it. Too bad all the html rendering apps from the marketplace are priced WAY too high for what they offer. Guess I'll have to stick with exporting to #markdown for now.
I was recently forced to create redundant #Confluence docs and since I hate Confluence, I started looking for a tool that allows me to just write Markdown in versioned files and generate the docs in Confluence.
Ein wunderbares Beispiel, weshalb man seine Software in englischer Sprache betreiben soll.
Eine #Confluence-App von #Appfire ("... the leading global provider of software that enhances, extends, and connects the world's leading platforms ...") mit einem Gustostückerl an Fehlermeldung.
Spoiler: "Lösung" im zweiten Bild. Also schaut euch mal das erste (kleinere) genüsslich an und ratet zuerst mit, was es denn bedeuten mag.
Sometimes I dream of #Atlassian going bankrupt, so $Employer will be finally forced to use a more sane set of tools.
The incoherence between their tools is mindboggling, the lack of addressing fundamental UI/UX issues since many years is pure neglect and disdain towards their actual users, the friction caused by these horribly bloated products might be more severe than not having them in the first place.
This platform is stuck in the past and not moving forward!
Is there any converter to translate between the various markup languages the #Atlassian tools use to/from #Markdown, so I could at least copy and paste back and forth or even use a #FirefoxAddOn to edit in my native external editor?
There's new vuln hotness today, of course, but Rapid7 has also seen exploit attempts against real-world environments for both Atlassian #Confluence#CVE_2023_22527 and the #Ivanti Connect Secure chain. New hotness doesn't eclipse yesterday's (or yesteryear's) stars.
Johannes Ullrich @jullrich of SANS ISC warns of scanning and exploitation attempts of the Atlassian Confluence RCE vulnerability CVE-2023-22527 (10.0 critical, disclosed 16 January 2024 by Atlassian).
🔗 https://isc.sans.edu/diary/rss/30576
I thought #SharePoint would be the worse shitty software I’d ever be forced to use. Then I was told to use #Confluence. There’re no words in this Galaxy to express how much I vomit this thing.
Codeschmuggel in Atlassian-Produkten: Vier kritische Lücken aufgetaucht
Admins von Confluence, Jira und Bitbucket kommen aus dem Patchen nicht heraus: Erneut hat Atlassian dringende Updates für seine wichtigsten Produkte vorgelegt.
Public Service Announcement: when you upload spreadsheets to Confluence, if you want them to display properly, please set up a printing area, and the relevant zoom information. Most of the time, setting them up to fit into 1 by 1 page is enough to make them massively more readable than the default setup…
(This is a note for future me as much as for yourselves 😉)
Leslie Barlow, an artist and community educator passionate about science fiction, founded ConFluence, a pop culture convention centered on people of color, in response to the lack of Black and brown representation at traditional sci-fi events.
❗📢 Aktive Ausnutzung einer #Schwachstelle in Atlassian Confluence Data Center und Server. Die Schwachstelle ermöglicht es entfernten unautorisierten Angreifenden Confluence zurückzusetzen und ein Confluence-Instanzadministratorkonto zu erstellen. Mit diesem Konto können Angreifende alle administrativen Aktionen durchführen, die dem Confluence-Instanzadministrator zur Verfügung stehen.
If you need to use #Atlassian#Confluence at work and you struggle like me because its editor is not accessible for #blind#screenReader users (and they removed the source code editor and don’t want to bring it back), but you still want to create fancy wiki pages without bothering your colleagues and begging them for help, I have a lifehacky solution:
Write your wiki page in plain HTML. I mean, with tags and everything.
Save it as an HTML file.
Open it in a browser.
Select all and copy the whole thing. Note to fellow #JAWS users: Make sure you have "Copy full content" set in Quick Settings (JAWSKey+V).
Paste your page in the Confluence editor. You may check that the formatting is there by skimming through, it should read headings, lists and so on, akin to how it does it in Microsoft Word.
Enjoy and make your colleagues enjoy too!
P.S. Atlassian products are still a piece of brown substance accessibility-wise, and it’s not chocolate, as far from that as you can imagine.
📨 Latest issue of my curated #cybersecurity and #infosec list of resources for week #44/2023 is out! It includes the following and much more:
➝ 🔓 #Okta hit by another #breach, this one stealing employee data from 3rd-party vendor
➝ 🔓 💸 #LastPass breach linked to theft of $4.4 million in crypto
➝ 🇮🇳 #India's Biggest Data Leak So Far? Covid-19 Test Info of 81.5Cr Citizens With ICMR Up for Sale
➝ 🔓 ✈️ #Lockbit ransomware group claims to have hacked #Boeing
➝ 🇳🇱 ⚖️ Dutch hacker jailed for extortion, selling stolen data on RaidForums
➝ 🇷🇺 🇺🇸 Russian Reshipping Service ‘SWAT USA Drop’ Exposed
➝ 🇮🇷 🦠 Iranian Cyber Spies Use ‘#LionTail’ Malware in Latest Attacks
➝ 📉 Security researchers observed ‘deliberate’ takedown of notorious #Mozi#botnet
➝ 🇮🇳 📱 Apple warns Indian opposition leaders of state-sponsored #iPhone attacks
➝ 🌍 Four dozen countries declare they won’t pay #ransomware ransoms
➝ 🇷🇺 How #Kopeechka, an Automated Social Media Accounts Creation Service, Can Facilitate #Cybercrime
➝ 🇪🇺 EU digital ID reforms should be ‘actively resisted’, say experts
➝ 🇷🇺 🇺🇦 #FSB arrests Russian hackers working for Ukrainian cyber forces
➝ 🇺🇸 FTC orders non-bank financial firms to report breaches in 30 days
➝ 🇨🇦 📱 #Canada Bans #WeChat and #Kaspersky Apps On Government Devices
➝ 🇺🇸 #SEC Charges #SolarWinds and Its #CISO With Fraud and Cybersecurity Failures
➝ 🇺🇸 🤖 #Biden Wants to Move Fast on AI Safeguards and Will Sign an Executive Order to Address His Concerns
➝ 🦠 📱 #Avast confirms it tagged Google app as #malware on Android phones
➝ 🦠 🇰🇵 North Korean Hackers Targeting Crypto Experts with #KANDYKORN#macOS Malware
➝ 👥 💸 EleKtra-Leak #Cryptojacking Attacks Exploit #AWS IAM Credentials Exposed on #GitHub
➝ 🦠 🐍 Trojanized #PyCharm Software Version Delivered via #Google Search Ads
➝ ✅ 🤖 #GooglePlay adds security audit badges for Android #VPN apps
➝ 🔐 Microsoft pledges to bolster security as part of ‘Secure Future’ initiative
➝ 🆕 FIRST Releases #CVSS 4.0 Vuln Scoring Standard
➝ 🆕 #MITRE Releases ATT&CK v14 With Improvements to Detections, ICS, Mobile
➝ ⛔️ 🦠 #Samsung Galaxy gets new Auto Blocker anti-malware feature
➝ 🍏 🔐 #Apple Improves #iMessage Security With Contact Key Verification
➝ 🔓 Researchers Find 34 #Windows Drivers Vulnerable to Full Device Takeover
➝ 🔓 🪶 3,000 #Apache#ActiveMQ servers vulnerable to RCE attacks exposed online
➝ 🗣️ #Atlassian CISO Urges Quick Action to Protect #Confluence Instances From Critical #Vulnerability
➝ 🔓 🩸 “This vulnerability is now under mass exploitation.” #CitrixBleed bug bites hard
➝ 🐛 💰 HackerOne paid ethical hackers over $300 million in #bugbounties
📚 This week's recommended reading is: "Permanent Record" by Edward Snowden
Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️
Security Week: The Atlassian Confluence improper authorization vulnerability CVE-2023-22518 (9.1 critical severity, disclosed 31 October 2023 by Atlassian, significant data loss) is reported under active exploitation. CVE-2023-22518 has a now-public Proof of Concept, as well as technical details (released by Project Discovery). See GreyNoise observations of CVE-2023-22518 exploitation. Link:https://www.securityweek.com/exploitation-of-critical-confluence-vulnerability-begins/
Nerds of color assemble for ConFluence this weekend (www.mprnews.org)
Leslie Barlow, an artist and community educator passionate about science fiction, founded ConFluence, a pop culture convention centered on people of color, in response to the lack of Black and brown representation at traditional sci-fi events.