CISA: Hackers Use ColdFusion Flaw to Breach Federal Agency | allinfosecnews.com

Dec. 6, 2023, 8:23 p.m. | Jeffrey Burt

Security Boulevard securityboulevard.com

A security flaw in Adobe’s ColdFusion application development tool that was patched in March continues to be a headache for organizations running unpatched versions of the product. This week, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) said two public-facing web servers at an unnamed federal government agency were breached by one or two separate..

The post CISA: Hackers Use ColdFusion Flaw to Breach Federal Agency appeared first on Security Boulevard.

adobe agency application application development application security breach breached cisa cloud security coldfusion cybersecurity data security development facing federal federal agency federal government flaw government government agency hackers identity & access infrastructure infrastructure security malware march network security organizations product public running security security boulevard (original) security flaw servers social - facebook social - linkedin social - x spotlight threat intelligence threats & breaches tool unpatched web web servers week

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – Controlled Data Races In Enclaves: Attacks And Detection 13 hours ago | securityboulevard.com

access attacks authors channel +16

What is Secure Code Review and How to Conduct it? 21 hours ago | securityboulevard.com

application assurance automated cloud security +19

Why Bot Management Should Be a Crucial Element of Your Marketing Strategy 1 day, 5 hours ago | securityboulevard.com

address advanced bot protection analytics application security +15

Cloud Monitor Identifies and Remediates Problematic VPN Use in K-12 Districts 1 day, 6 hours ago | securityboulevard.com

chief cloud cybersecurity director +24

Brothers Indicted for Stealing $25 Million of Ethereum in 12 Seconds 1 day, 8 hours ago | securityboulevard.com

blockchain cryptocurrency crypto scam cyberlaw +24

Votiro Keeps Up the Momentum in 2024 1 day, 8 hours ago | securityboulevard.com

blog momentum security security boulevard +1

Novel Threat Tactics, Notable Vulnerabilities, and Current Trends for April 2024 1 day, 9 hours ago | securityboulevard.com

april blog posts center clients +32

USENIX Security ’23 – AEX-Notify: Thwarting Precise Single-Stepping Attacks Through Interrupt Awareness For Intel SGX … 1 day, 9 hours ago | securityboulevard.com

access attacks authors awareness +15

North Korea IT Worker Scam Brings Malware and Funds Nukes 1 day, 10 hours ago | securityboulevard.com

analytics & intelligence api security appsec careers +60

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India

View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190

View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal

View on infosec-jobs.com