https://bit.ly/46G6SIa - 🚨 Hackers are actively exploiting a critical vulnerability in ownCloud, identified as CVE-2023-49103. This flaw, which exposes admin passwords and other sensitive credentials, particularly affects containerized deployments of the widely-used open-source file synchronization and sharing solution. #CyberSecurity #ownCloudVulnerability 💻 The vulnerability allows remote attackers to execute 'phpinfo()' through the 'graphapi' app in ownCloud. This exposes server environment variables, including sensitive data like admin passwords, mail server credentials, and license keys. The severity of this issue is underscored by its maximum CVSS score of 10.0. #DataBreach #CVE2023-49103 🔥 Active exploitation of this vulnerability has been reported since November 25, 2023. Threat tracking firms like Greynoise and Shadowserver have observed significant exploitation activities, with over 11,000 exposed instances detected worldwide. #HackingAlert #ThreatIntelligence 🌍 The exploitation is particularly widespread in Germany, the United States, France, and Russia. The heatmap of vulnerable endpoints indicates a global impact, urging immediate action from ownCloud administrators. #GlobalCyberThreat #TechSecurity 🛡️ To mitigate the risk, administrators should take specific remedial actions. Deleting a particular file in the 'graphapi' app, disabling the 'phpinfo' function in Docker containers, and changing exposed secrets are recommended. It's crucial to note that simply disabling the 'graphapi' app does not eliminate the threat.











