Introducing GravityZone XDR Integration for Atlassian Cloud Applications
December 13, 2024
Atlassian Cloud simplifies the way teams collaborate and manage projects throughout the entire development lifecycle. Through Jira, they can streamline project management, Bitbucket facilitates their code collaboration, and Confluence centralizes knowledge sharing. While Atlassian Cloud is powerful, collaboration and project management tools, it's important to be aware of potential cybersecurity risks. Like any online platform, Atlassian Cloud can be subject to various threats, including social engineering, phishing attacks, and vulnerabilities in applications or plugins.
On the November 27th, Bitdefender enhanced the security of Atlassian Cloud applications, including Confluence, Jira, and Bitbucket, by integrating them with GravityZone via XDR Sensor. This integration identifies data breaches and unauthorized access, helping you safeguard collaboration, project management, and software development processes.
Atlassian Cloud Integration
The GravityZone XDR Atlassian Cloud integration is available as a new add-on: Business Applications. This add-on, part of the existing GravityZone XDR offering, enables you to monitor and protect intellectual property and sensitive corporate data.
Atlassian Cloud Sensor, through its API integration, uses Atlassian Admin as a main sensor to retrieve audit events and logs. You can also add dedicated Jira Cloud and Confluence Cloud sensors for additional context from these platforms.
Atlassian Cloud Detections
Bitdefender's GravityZone XDR integration for Atlassian Cloud offers you centralized monitoring, detection, and correlation of security threats in real-time, all managed from the GravityZone Console.
You can use Atlassian Cloud Sensor to discover in Atlassian Admin events such as possible brute force or distributed brute force attempt for user or failed login attempts indicating that attackers are trying to gain unauthorized access to your Atlassian Cloud environment.
Events such as anomalous login location, activity from suspicious or anonymous IP addresses, and impossible travel can suggest that an account has been compromised and malicious actors may be actively exploiting the compromised account to further their malicious activities.
Attackers may also attempt to create access tokens or invite guests as part of their persistence and attack automation efforts. These and other unusual administrative activities are also recognized and sent to the GravityZone correlation engine.
Atlassian Cloud Sensor can also detect unusual activities within Jira, such as adding or removing project administrators, changing global permissions, creating, or modifying permission schemes, or creating or modifying project roles. These actions, if performed by unauthorized individuals, could indicate a security breach and potential data exfiltration. Additionally, actions like deleting a project could be a final step in a data destruction attempt.
Atlassian Cloud Sensor can also detect unusual activities within Confluence, such as changes to user or group permissions, creation of public links for pages, and space export. These actions, if performed without authorization, could signal a potential exfiltration attempt.
Atlassian Cloud Response
Existing sensor integrations not only enable data collection but also allow you to execute response actions directly through Sensors in the GravityZone console, leveraging recommendations from the Incident Advisor.
Atlassian Cloud Sensor offers you the possibility to suspend user access to Atlassian organization resources, which can break the ongoing attack chain. Additionally, it will provide you with additional recommendations, such as resetting users' passwords, through the Atlassian Admin console to reduce the risk of unauthorized access and prevent further attacks.
Summary
Bitdefender GravityZone XDR integration for Atlassian Cloud offers comprehensive protection for your critical collaboration and project management tools. By monitoring and analyzing user behavior, administrative activities, and security events, you can proactively identify and respond to potential threats protecting your intellectual property and sensitive corporate data. The new functionality is available now and is included in Bitdefender XDR Sensor- Business Applications.
Learn more about GravityZone XDR on our official webpage here.
tags
Author
Grzegorz Nocon is a graduate of the Faculty of Physics at the University of Silesia. With over 16 years of experience in the IT industry, he currently works as a Technical Marketing Engineer at Bitdefender. A strong supporter of a holistic approach to security and passionate about solving security problems in a comprehensive and integrated way. Outside of work, an avid CrossFit enthusiast and a lover of fantasy literature.
View all postsRight now Top posts
FOLLOW US ON SOCIAL MEDIA
SUBSCRIBE TO OUR NEWSLETTER
Don’t miss out on exclusive content and exciting announcements!
You might also like
Bookmarks
