JIRA Attack

Hibernate Latest Victim of XSS Attack

Jessica Thornsby

Following a targeted XSS attack on Apache’s issue tracking software, it has been revealed that the Hibernate JIRA has also been compromised by an XSS attack.

“At this time they are still investigating and analyzing to determine the extent of the compromise. Specifically it is unknown yet whether passwords or user data in general were accessed,” reads the announcement by Steve Ebersole.

As a precautionary measure, all passwords have been reset. Contegix is currently upgrading the JIRA software.

comments powered by Disqus