{"id":47655,"date":"2022-07-25T15:45:57","date_gmt":"2022-07-25T15:45:57","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/33665\/Hardcoded-Password-In-Confluence-Has-Been-Leaked-On-Twitter.html"},"modified":"2022-07-25T15:45:57","modified_gmt":"2022-07-25T15:45:57","slug":"hardcoded-password-in-confluence-has-been-leaked-on-twitter","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/","title":{"rendered":"Hardcoded Password In Confluence Has Been Leaked On Twitter"},"content":{"rendered":"<figure class=\"intro-image intro-left\"> <img decoding=\"async\" src=\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2022\/07\/password-login-800x534.jpeg\" alt=\"Hardcoded password in Confluence app has been leaked on Twitter\"><figcaption class=\"caption\">\n<div class=\"caption-credit\">Getty Images<\/div>\n<\/figcaption><\/figure>\n<aside id=\"social-left\" class=\"social-left\" aria-label=\"Read the comments or share this article\"> <a title=\"55 posters participating\" class=\"comment-count icon-comment-bubble-down\" href=\"https:\/\/arstechnica.com\/information-technology\/2022\/07\/atlassian-warns-hardcoded-password-flaw-is-likely-to-be-exploited-in-the-wild\/?comments=1\"> <\/p>\n<h4 class=\"comment-count-before\">reader comments<\/h4>\n<p> <span class=\"comment-count-number\">76<\/span> <span class=\"visually-hidden\"> with 55 posters participating<\/span> <\/a> <\/p>\n<div class=\"share-links\">\n<h4>Share this story<\/h4>\n<\/p><\/div>\n<\/aside>\n<p> <!-- cache hit 273:single\/related:3fcc8c189868ee6cf930f6b9511548ce --><!-- empty --><\/p>\n<p>What&#8217;s worse than a widely used Internet-connected enterprise app with a hardcoded password? Try said enterprise app after the hardcoded password has been leaked to the world.<\/p>\n<p>Atlassian on Wednesday revealed <a href=\"https:\/\/confluence.atlassian.com\/security\/july-2022-atlassian-security-advisories-overview-1142446703.html\">three critical product vulnerabilities<\/a>, including <a href=\"https:\/\/www.cve.org\/CVERecord?id=CVE-2022-26138\">CVE-2022-26138<\/a> stemming from a hardcoded password in <a href=\"https:\/\/marketplace.atlassian.com\/apps\/1211644\/questions-for-confluence?hosting=server&amp;tab=overview\">Questions for Confluence<\/a>, an app that allows users to quickly receive support for common questions involving Atlassian products. The company warned the passcode was &#8220;trivial to obtain.&#8221;<\/p>\n<p>The company said that Questions for Confluence had 8,055 installations at the time of publication. When installed, the app creates a Confluence user account named disabledsystemuser, which is intended to help admins move data between the app and the Confluence Cloud service. The hardcoded password protecting this account allows for viewing and editing of all non-restricted pages within Confluence.<\/p>\n<p>&#8220;A remote, unauthenticated attacker with knowledge of the hardcoded password could exploit this to log into Confluence and access any pages the confluence-users group has access to,&#8221; the company said. &#8220;It is important to remediate this vulnerability on affected systems immediately.&#8221;<\/p>\n<p>A day later, Atlassian was back to report that &#8220;an external party has discovered and publicly disclosed the hardcoded password on Twitter,&#8221; leading the company to ratchet up its warnings.<\/p>\n<p>&#8220;This issue is likely to be exploited in the wild now that the hardcoded password is publicly known,&#8221; the updated advisory read. &#8220;This vulnerability should be remediated on affected systems immediately.&#8221;<\/p>\n<p>The company warned that even when Confluence installations don&#8217;t actively have the app installed, they may still be vulnerable. Uninstalling the app doesn&#8217;t automatically remediate the vulnerability because the disabledsystemuser account can still reside on the system.<\/p>\n<aside class=\"ad_wrapper\" aria-label=\"In Content advertisement\"> <span class=\"ad_notice\">Advertisement <\/span> <\/aside>\n<p>To figure out if a system is vulnerable, Atlassian advised Confluence users to search for accounts with the following information:<\/p>\n<ul>\n<li aria-level=\"1\"><span>User: <\/span><span>disabledsystemuser<\/span><\/li>\n<li aria-level=\"1\"><span>Username: <\/span><span>disabledsystemuser<\/span><\/li>\n<li aria-level=\"1\"><span>Email: <\/span><span>dontdeletethisuser@email.com<\/span><\/li>\n<\/ul>\n<p>Atlassian provided more instructions for locating such accounts <a href=\"https:\/\/confluence.atlassian.com\/confkb\/how-to-get-a-list-of-users-with-their-last-logon-times-985499701.html\">here<\/a>. The vulnerability affects Questions for Confluence versions 2.7.x and 3.0.x. Atlassian provided two ways for customers to fix the issue: disable or remove the &#8220;disabledsystemuser&#8221; account. The company has also published <a href=\"https:\/\/confluence.atlassian.com\/kb\/faq-for-cve-2022-26138-1141988423.html\">this list<\/a> of answers to frequently asked questions.<\/p>\n<p>Confluence users looking for exploitation evidence can check the last authentication time for disabledsystemuser using the instructions <a href=\"https:\/\/confluence.atlassian.com\/confkb\/how-to-get-a-list-of-users-with-their-last-logon-times-985499701.html\">here<\/a>. If the result is null, the account exists on the system, but no one has yet signed in using it. The commands also show any recent login attempts that were successful or unsuccessful.<\/p>\n<p>&#8220;Now that the patches are out, one can expect patch diff and reversing engineering efforts to produce a public POC in a fairly short time,&#8221; Casey Ellis, founder of vulnerability reporting service Bugcrowd, wrote in a direct message. &#8220;Atlassian shops should get on to patching public-facing products immediately, and those behind the firewall as quickly as possible. The comments in the advisory recommending against proxy filtering as mitigation suggest that there are multiple trigger pathways.<\/p>\n<p>The other two vulnerabilities Atlassian disclosed on Wednesday are also serious, affecting the following products:<\/p>\n<ul>\n<li aria-level=\"1\"><span>Bamboo Server and Data Center<\/span><\/li>\n<li aria-level=\"1\"><span>Bitbucket Server and Data Center<\/span><\/li>\n<li aria-level=\"1\"><span>Confluence Server and Data Center<\/span><\/li>\n<li aria-level=\"1\"><span>Crowd Server and Data Center<\/span><\/li>\n<li aria-level=\"1\"><span>Crucible<\/span><\/li>\n<li aria-level=\"1\"><span>Fisheye<\/span><\/li>\n<li aria-level=\"1\"><span>Jira Server and Data Center<\/span><\/li>\n<li aria-level=\"1\"><span>Jira Service Management Server and Data Center<\/span><\/li>\n<\/ul>\n<p>Tracked as CVE-2022-26136 and CVE-2022-26137, these vulnerabilities make it possible for remote, unauthenticated hackers to bypass Servlet Filters used by first- and third-party apps.<\/p>\n<p>&#8220;The impact depends on which filters are used by each app, and how the filters are used,&#8221; the company <a href=\"https:\/\/confluence.atlassian.com\/security\/multiple-products-security-advisory-cve-2022-26136-cve-2022-26137-1141493031.html\">said<\/a>. &#8220;Atlassian has released updates that fix the root cause of this vulnerability but has not exhaustively enumerated all potential consequences of this vulnerability.&#8221;<\/p>\n<p>Vulnerable Confluence servers have long been a favorite opening for hackers looking to install <a href=\"https:\/\/news.sophos.com\/en-us\/2022\/06\/16\/confluence-exploits-used-to-drop-ransomware-on-vulnerable-servers\/\">ransomware<\/a>, <a href=\"https:\/\/arstechnica.com\/gadgets\/2021\/04\/windows-and-linux-devices-are-under-attack-by-a-new-cryptomining-worm\/\">cryptominers<\/a>, and other forms of malware. The vulnerabilities Atlassian disclosed this week are serious enough that admins should prioritize a thorough review of their systems, ideally before the weekend starts.<\/p>\n<p> READ MORE <a href=\"https:\/\/packetstormsecurity.com\/news\/view\/33665\/Hardcoded-Password-In-Confluence-Has-Been-Leaked-On-Twitter.html\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":47656,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[60],"tags":[10110],"class_list":["post-47655","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-packet-storm","tag-headlinedata-lossflawpasswordtwitter"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Hardcoded Password In Confluence Has Been Leaked On Twitter 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hardcoded Password In Confluence Has Been Leaked On Twitter 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2022-07-25T15:45:57+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2022\/07\/password-login-800x534.jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Hardcoded Password In Confluence Has Been Leaked On Twitter\",\"datePublished\":\"2022-07-25T15:45:57+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/\"},\"wordCount\":659,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg\",\"keywords\":[\"headline,data loss,flaw,password,twitter\"],\"articleSection\":[\"Packet Storm\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/\",\"name\":\"Hardcoded Password In Confluence Has Been Leaked On Twitter 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg\",\"datePublished\":\"2022-07-25T15:45:57+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/07\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg\",\"width\":800,\"height\":534},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"headline,data loss,flaw,password,twitter\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/headlinedata-lossflawpasswordtwitter\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Hardcoded Password In Confluence Has Been Leaked On Twitter\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hardcoded Password In Confluence Has Been Leaked On Twitter 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/","og_locale":"en_US","og_type":"article","og_title":"Hardcoded Password In Confluence Has Been Leaked On Twitter 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2022-07-25T15:45:57+00:00","og_image":[{"url":"https:\/\/cdn.arstechnica.net\/wp-content\/uploads\/2022\/07\/password-login-800x534.jpeg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Hardcoded Password In Confluence Has Been Leaked On Twitter","datePublished":"2022-07-25T15:45:57+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/"},"wordCount":659,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/07\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg","keywords":["headline,data loss,flaw,password,twitter"],"articleSection":["Packet Storm"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/","url":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/","name":"Hardcoded Password In Confluence Has Been Leaked On Twitter 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/07\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg","datePublished":"2022-07-25T15:45:57+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/07\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2022\/07\/hardcoded-password-in-confluence-has-been-leaked-on-twitter.jpg","width":800,"height":534},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/hardcoded-password-in-confluence-has-been-leaked-on-twitter\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"headline,data loss,flaw,password,twitter","item":"https:\/\/www.threatshub.org\/blog\/tag\/headlinedata-lossflawpasswordtwitter\/"},{"@type":"ListItem","position":3,"name":"Hardcoded Password In Confluence Has Been Leaked On Twitter"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/47655","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=47655"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/47655\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/47656"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=47655"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=47655"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=47655"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}