This issue has been created
There are 2 updates.
 
 
XWiki Platform / cid:jira-generated-image-avatar-aff44675-e3ac-4900-9b2e-2861fb38a9ae XWIKI-22742 Open

Vade Notification - Potential Security Issue Detected - mail[.]xwiki[.]org
 
View issue   ยท   Add comment
 

Issue created

 
cid:jira-generated-image-avatar-35b4454c-ae03-4c7c-b6c4-cac74caa4c04 Simon created this issue on 24/Dec/24 09:58
 
Summary: Vade Notification - Potential Security Issue Detected - mail[.]xwiki[.]org
Issue Type: cid:jira-generated-image-avatar-aff44675-e3ac-4900-9b2e-2861fb38a9ae Bug
Assignee: Unassigned
Created: 24/Dec/24 09:58
Labels: security
Priority: cid:jira-generated-image-static-critical-c43f7cb6-62e8-4a7c-9daa-dfacfde27b56 Critical
Reporter: Simon
Description:

Hello,
 
 
We are writing to inform you of a security incident that was recently identified relating to the following domain : mail[.]xwiki[.]org
 
 
Malicious urls were identified by a Vade's security component.
 
Currently, malicious threat actors are leveraging this domain for attacking third-party stakeholders.
 
 
It seems that attackers have overtaken an expirated CNAME of mail[.]xwiki[.]org 
 
Based on our findings, we are notifying you of a security incident in order for you to remediate this issue.
 
 
Example of malicious URLs  :
 

 
 
Kind regards,
 
vade_logo.jpg
 
 

2 updates

 
cid:jira-generated-image-avatar-35b4454c-ae03-4c7c-b6c4-cac74caa4c04 Changes by Simon on 24/Dec/24 10:01
 
Description: Hello,
 
 
We are writing to inform you of a security incident that was recently identified relating to the following domain : mail[.]xwiki[.]org
 
 
Malicious urls were identified by a Vade's security component.
 
Currently, malicious threat actors are leveraging this domain for attacking third-party stakeholders.
 
 
It seems that attackers have overtaken an expirated CNAME of mail[.]xwiki[.]org 
 
Based on our findings, we are notifying you of a security incident in order for you to remediate this issue.
 
 
Example of malicious URLs  :
 
* [ http://mail[.]xwiki[.]org ]  /nvIN.dx?putdkywtnzvrti=vxylvwizeknserMjh0Z2J3eDAwaWZiajAwMjM2MTB3MDRnMGMwNTE5NTE5Mjk5OQ==
* [ http://mail[.]xwiki[.]org/nvIN.dx?ifvsgqwztuphtk=jumxmljdskwtwfMzh0Z2J3eDAwaWZiajAwMjM2MTB3MDRnMGMwNTE5NTE5Mjk5OQ== ]

 
 
Kind regards,
 
PS : Sorry if we created this issue in the wrong project.
 
 !https://sendertool.vadesecure.com/static/images/vade_logo.jpg!
Attachment: Screenshot from 2024-12-24 09-57-29.png
 
 
This message was sent by Atlassian Jira (v9.3.0#930000-sha1:287aeb6) Atlassian logo
If image attachments aren't displayed, see this article.