Tag: ColdFusion
-
Adobe ColdFusion Flaw Used by Hackers to Access US Govt Servers
Authorities urge Adobe ColdFusion customers to promptly install patches and update their systems. The Cybersecurity and Infrastructure …
-
CISA details twin attacks on federal servers via unpatched ColdFusion flaw
CISA has released details about a federal agency that recently had at least two public-facing servers compromised by attackers exploiting a …
-
How to use intelligence on failed ColdFusion attack to bolster your ransomware defenses
Ransomware tactics are constantly evolving in a never-ending cat-and-mouse game, with defenders adjusting their strategies to either block …
-
What a failed attack against ColdFusion revealed about ransomware tools and tactics
A recent attack levied against servers running out-of-date Adobe software sheds some light on how threat actors are currently trying to …
-
Ransomware actor exploits unsupported ColdFusion servers — but comes away empty-handed
Servers are always a point of interest for threat actors as they are one of the most efficient attack vectors to penetrate an organization. …
-
Adobe out-of-band update addresses an actively exploited ColdFusion zero-day
Adobe released an emergency update to address critical vulnerabilities in ColdFusion, including an actively exploited zero-day. Adobe …
-
Exploited 0-days, an incomplete fix, and a botched disclosure: Infosec snafu reigns
Organizations big and small are once again scrambling to patch critical vulnerabilities that are already under active exploitation and …
-
Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks
At least two recently disclosed Adobe ColdFusion vulnerabilities appear to have been exploited in the wild, including a flaw that security …
-
Adobe warns customers of a critical ColdFusion RCE exploited in attacks
Adobe is warning customers of a critical ColdFusion pre-authentication RCE bug, tracked as CVE-2023-29300, which is actively exploited. …
-
CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on March 15 added a security vulnerability impacting Adobe ColdFusion to …
-
Microsoft Patch Tuesday fix Outlook zero-day actively exploited
Microsoft Patch Tuesday updates for March 2023 addressed 74 vulnerabilities, including a Windows zero-day exploited in ransomware attacks. …
-
Adobe fixed ColdFusion flaw listed as under active exploit
Adobe is warning that a critical zero-day flaw in ColdFusion web app development platform was exploited in very limited attacks. Software …
●●●