What We’ve Learned from Exposing Atlassian on the Internet: In-Depth Analysis from an Offensive Perspective

Recordings

https://www.youtube.com/watch?v=ayZND7BGEWA&list=PL8N5HiRDvZ-dVdLNXf6kC3WDi8AWBS27g&index=20

Slides

/files/slides/002-07_3HLCPX - OleksandrKazymyrov_What We’ve Learned from Exposing Atlassian on the Internet In-Depth Analysis from an Offensive Perspective.pdf

View Slides

Abstract

During a recent security assessment of Storebrand’s modern environment hosted on Azure, the offensive team identified several attack vectors from the Internet that could compromise the organization’s assets. Specifically, vulnerabilities were discovered in Atlassian products exposed on the Internet, which could allow attackers to gain unauthorized access to sensitive data. To mitigate these vulnerabilities, the Web Application Firewall (WAF) was re-evaluated and reconfigured to protect Atlassian products. Overall, the offensive team’s identification of these attack vectors and recommendation to implement a WAF helped Storebrand’s security team improve their security posture and better protect their modern environment.

Oleksandr Kazymyrov

Oleksandr, an Offensive Security Manager at Storebrand, brings over 15 years of extensive experience in information security to his role. With a background in cryptography and holding a PhD in the field, he possesses deep expertise and knowledge in securing digital systems and data. In his current position, Oleksandr is entrusted with the responsibility of managing and strengthening offensive security initiatives at Storebrand. Through his leadership and expertise, he has significantly contributed to enhancing Storebrand’s security posture and providing a comprehensive understanding of the organization’s corporate risks and vulnerabilities.