A new attack vector exploits the CVE-2023-22527 vulnerability in older Atlassian Confluence versions to deploy the in-memory Godzilla backdoor.  A loader is initially introduced into the compromised server, activating the Godzilla webshell, which is a Chinese-language backdoor that uses AES encryption for communication and evades detection by remaining in memory.  Legacy antivirus solutions struggle to … Continue reading Confluence Exploit Drops Godzilla Fileless Backdoor on Atlassian Servers