InformationWeek is part of the Informa Tech Division of Informa PLC

Informa PLC|ABOUT US|INVESTOR RELATIONS|TALENT

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Reports Online Events Advertise About

Newsletter Sign-Up

Leadership

Recent in Leadership

See All

Green Balloon about to be burst by a needle held by a businessman's hand in a pinstripe sleeve.

IT Leadership

Tech Company Layoffs: The COVID Tech Bubble Bursts Tech Company Layoffs: The COVID Tech Bubble Bursts

byBrandon Taylor, Jessica Davis

May 7, 2024

2h 57m Read

Hybrid cloud, IaaS (Infrastructure as a Service) graphics displayed on a computer screen.

IT Management

Tia Hopkins Reveals Methods for Finding Balance in Hybrid Cloud Environments Tia Hopkins Reveals Methods for Finding Balance in Hybrid Cloud Environments

byBrandon Taylor

May 4, 2024

7 Min View

Resilience

Recent in Resilience

See All

thumbnail

Cyber Resilience

Blinken: US Agencies Will Unify Cyber Approach With ‘Digital Solidarity’Blinken: US Agencies Will Unify Cyber Approach With ‘Digital Solidarity’

byShane Snider

May 7, 2024

3 Min Read

thumbnail

Cyber Resilience

‘They’re Coming After Us’: RSA Panel Explores CISO Legal Pressure ‘They’re Coming After Us’: RSA Panel Explores CISO Legal Pressure

byShane Snider

May 6, 2024

3 Min Read

ML & AI

Recent in ML & AI

See All

thumbnail

Cyber Resilience

Blinken: US Agencies Will Unify Cyber Approach With ‘Digital Solidarity’Blinken: US Agencies Will Unify Cyber Approach With ‘Digital Solidarity’

byShane Snider

May 7, 2024

3 Min Read

word mainframe under a magnifying glass

Machine Learning & AI

The Mainframe at 60: Future-Proof Legacy Computing for AI The Mainframe at 60: Future-Proof Legacy Computing for AI

byVincent Alloo

May 3, 2024

5 Min Read

Data

Recent in Data

See All

DNA (deoxyribonucleic acid) strand, illustration.

Data Management

DNA is an Ancient Form of Data Storage. Is it Also a Radical New Alternative?DNA is an Ancient Form of Data Storage. Is it Also a Radical New Alternative?

byRichard Pallardy

May 7, 2024

15 Min Read

wooden lock with word data as missing piece of the wood

Data Management

Data Privacy in the Age of AI Means Moving Beyond Buzzwords Data Privacy in the Age of AI Means Moving Beyond Buzzwords

byMaritza Johnson

May 7, 2024

4 Min Read

Sustainability

Recent in Sustainability

See All

Abstract blue technology background with water, water droplets and a printed circuit board.

Cyber Resilience

The Tug-of-War for Cyber Resilience to Guard Water Utilities The Tug-of-War for Cyber Resilience to Guard Water Utilities

byJoao-Pierre S. Ruth

May 2, 2024

7 Min Read

Small wind turbines and solar panels on the roof of a hotel in Germany.

Sustainability

Decentralized Renewables Fuel Sustainability Decentralized Renewables Fuel Sustainability

bySamuel Greengard

Apr 30, 2024

6 Min Read

Infrastructure

Recent in Infrastructure

See All

Businessman is showing the power of the internet cloud computing in his hand.

Cyber Resilience

Cloud Security and the Know-Your-Customer Executive Orders Cloud Security and the Know-Your-Customer Executive Orders

byJoao-Pierre S. Ruth

May 6, 2024

Old gas station exterior graphic black white sketch illustration vector

IT Infrastructure

Wisdom From the Pump: What Gas Spending Can Teach Us About Managing Public Cloud Costs Wisdom From the Pump: What Gas Spending Can Teach Us About Managing Public Cloud Costs

byPhil Pergola

May 6, 2024

4 Min Read

Software

Recent in Software

See All

business people at a table with word Agile in the center

Software & Services

Introducing Maintenance for Agile Applications Introducing Maintenance for Agile Applications

byMary E. Shacklett

May 3, 2024

5 Min Read

Manager is checking off four workers in a virtual planning matrix to select them for a work team.

IT Leadership

Why Your Enterprise Should Create an Internal Talent Marketplace Why Your Enterprise Should Create an Internal Talent Marketplace

byJohn Edwards

Apr 24, 2024

5 Min Read

Newsletters
Reports/Research
Online Events
Live Events
Podcasts

White Papers
Advertise With Us
About Us
IT Sectors

InformationWeek Resource Library

Cyber Resilience
Cybersecurity
Incident Response
Risk Management

Global TeamCity Exploitation Opens Door to SolarWinds-Style Nightmare

Russia's APT29 is going after a critical RCE flaw in the JetBrains TeamCity software developer platform, prompting governments worldwide to issue an urgent warning to patch.

Dark Reading, Staff & Contributors

December 14, 2023

1 Min Read

Creativep via Alamy Stock

APT29, the notorious Russian advanced persistent threat behind the 2020 SolarWinds hack, is actively exploiting a critical security vulnerability in JetBrains TeamCity that could open the door to rampant software supply chain attacks.

That's the word from CISA, the FBI, the NSA, and a host of international partners, who said in a joint alert today that APT29 (aka CozyBear, the Dukes, Midnight Blizzard, or Nobelium) is hammering servers hosting TeamCity software "at a large scale" using the unauthenticated remote code execution (RCE) bug. According to the feds, the exploitation of the issue, tracked as CVE-2023-42793 (CVSS score of 9.8), started in September after JetBrains patched the flaw and Rapid7 released a public proof-of-concept (PoC) exploit for it; but now, it has grown to be a worrying global phenomenon that could result in widespread damage.

Read the Full Article on Dark Reading

About the Author(s)

Dark Reading

Staff & Contributors

Dark Reading: Connecting The Information Security Community

Long one of the most widely-read cybersecurity news sites on the Web, Dark Reading is also the most trusted online community for security professionals. Our community members include thought-leading security researchers, CISOs, and technology specialists, along with thousands of other security professionals.

See more from Dark Reading

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

SIGN-UP

Editor's Choice

NHL's Calgary Flames at New Jersey Devils on February 8, 2024 in Newark, NJ

IT Infrastructure

NHL, Presidio, and a Transformation Power Move with Hybrid Cloud NHL, Presidio, and a Transformation Power Move with Hybrid Cloud

byJoao-Pierre S. Ruth

Apr 5, 2024

6 Min Read

Online Privacy Security Threat Abstract Background Art

Cyber Resilience

Cyber Risks When Job Hunters Become the Hunted Cyber Risks When Job Hunters Become the Hunted

byCarrie Pallardy

Apr 9, 2024

9 Min Read

Business innovative solution and creative concept as a paper boat tied to a light bulb

IT Leadership

9 Ways to Ensure Continuous Innovation 9 Ways to Ensure Continuous Innovation

byLisa Morgan

Apr 2, 2024

9 Slides

Hand charging an electric car, leaves and butterflies emerge from the cars exhaust, idea of sustainable transportation. Green energy, eco friendly

Sustainability

Sustainable Transportation Takes Off Sustainable Transportation Takes Off

bySamuel Greengard

Mar 26, 2024

5 Min Read

Robotic hand takes a slice out of a coin, representing money

Machine Learning & AI

Special Report: What's Next for the GenAI Market in 2024?Special Report: What's Next for the GenAI Market in 2024

bySara Peters

Mar 12, 2024

3 Min Read

Webinars

How to Amplify DevOps with DevSecOps
May 22, 2024
Generative AI: Use Cases and Risks in 2024
May 29, 2024
Smart Service Management
June 4, 2024

More Webinars

White Papers

Attacker Economics Infographic
Attacker Economics
Zoom Workplace Solution Brief
University of Minnesota Uses Entuity to Strategically Manage and Upgrade Complex Network Environment
Five Advantages of Fortinet Data Center Firewalls

More White Papers

Live Events

[Virtual Event] Cyber Resilience in 2024: Availability is Your Best Ability
May 2, 2024
[Virtual Event] Strategies for Maximizing IT Automation
March 28, 2024

More Live Events

Reports

*The Need for Modern Observation in Complex Cloud Environments
Enterprises' Biggest Obstacles to Maintaining Cyber Resiliency
Using Security Automation to Solve Workforce Shortages, Alert Fatigue, and More
2022 State of Network Management
2022 State of ITOps and SecOps

More Reports

ITPro Today & InformationWeek Virtual Event Logo

May 2, 2024

While there are plentiful options in cyber resiliency and business continuity tools and platforms, there isn’t one that can knock out everything from sudden cloud outages to prolonged ransomware attacks in a single punch. What can you do to keep the company on its feet no matter what is thrown at it? Find out in this new virtual event.

Reserve Your Seat Now

Related Topics

Recent in Leadership

Related Topics

Recent in Resilience

Related Topics

Recent in ML & AI

Related Topics

Recent in Data

Related Topics

Recent in Sustainability

Related Topics

Recent in Infrastructure

Related Topics

Recent in Software

Related Topics

Global TeamCity Exploitation Opens Door to SolarWinds-Style Nightmare

Read the Full Article on Dark Reading

About the Author(s)

Editor's Choice