On May 4, Adobe, Inc. filed a complaint against Silk Road Technology, Inc. (Silk Road), alleging that the company breached a software license agreement and infringed on its copyrights relating to an Adobe product called ColdFusion. This case is being held in the Northern District of California before Magistrate Judge Donna M. Riu. ColdFusion is an Adobe-owned website building software, whose licensees must use the product only for internal use within a company. As summarized by the complaint, “ColdFusion licensees use the product to create websites internal to their companies where their employees can submit expense reports or track inventory.” Unless a custom hosting license is created, the use of ColdFusion by and for third parties is prohibited. Against Adobe’s… Source link
Read More »Adobe Copyright Suit Over ColdFusion – Law Street Media
[unable to retrieve full-text content]Adobe Copyright Suit Over ColdFusion Law Street Media Source link
Read More »GoDaddy Hack Breaches Hosting Account Credentials – Threatpost
The domain registrar giant said that the breach started in October 2019. UPDATE GoDaddy, the world’s largest domain name registrar, is warning customers that attackers may have obtained their web hosting account credentials. An “unauthorized individual” was able to access users’ login details in an intrusion that the company said took place back in October — the company told Threatpost that the issue was discovered on April 23. The company said that the breach only affected hosting accounts, not general GoDaddy.com customer accounts, and that no customer data in the main accounts was accessed. The Scottsdale, Ariz.-based company has more than 19 million customers worldwide, but only 28,000 were affected by the attack. The… Source link
Read More »April Patch Tuesday: Microsoft Battles 4 Bugs Under Active Exploit – Threatpost
Microsoft issued 113 patches in a big update, unfortunately for IT staff already straining under WFH security concerns. Microsoft has released its April 2020 Patch Tuesday security updates, its first big patch update released since the work-from-home era truly got underway. It’s a doozie, with the tech giant disclosing 113 vulnerabilities. Out of these, 19 are rated as critical, and 94 are rated as important. Crucially, four of the vulnerabilities are being exploited in the wild; and two of them were previously publicly disclosed. In all, the update includes patches for Microsoft Windows, Microsoft Edge (EdgeHTML-based and the Chromium-based versions), ChakraCore, Internet Explorer, Microsoft Office and Microsoft Office Services… Source link
Read More »April 2020 Patch Tuesday – 113 Vulns, 19 Critical, Zero-Day Patches, SharePoint, Adobe ColdFusion
This month’s Microsoft Patch Tuesday addresses 113 vulnerabilities with 19 of them labeled as Critical. The 19 Critical vulnerabilities cover Adobe Font Manager Library (0-day), SharePoint, Hyper-V, Scripting Engines, Media Foundation, Microsoft Graphics, Windows Codecs, and Dynamics Business Central. Adobe released patches today for ColdFusion, After Effects, and Digital Editions. Workstation Patches The Scripting Engine, Adobe Font Manager Library, Media Foundation, Microsoft Graphics, and Windows Codecs patches should be prioritized for workstation-type devices, meaning any system that is used for email or to access the internet via a browser. This includes multi-user servers that are used as remote desktops for users. Windows Kernel Privilege Escalation While listed as Important,… Source link
Read More »Adobe Fixes ‘Important’ Flaws in ColdFusion, After Effects and Digital Editions – Threatpost
While Adobe’s regularly scheduled security updates were light this month, they fixed “important” severity vulnerabilities. Adobe released security patches for vulnerabilities in its ColdFusion, After Effects and Digital Editions applications. If exploited, the flaws could enable attackers to view sensitive data, gain escalated privileges, and launch denial-of-service attacks. Each of the bugs were rated important-severity, based on CVSS rankings, marking an extremely low-volume month for Adobe bug fixes. Overall Adobe patched flaws tied to five CVEs as part of its regularly scheduled security updates, Tuesday. That number pales in comparison to March, where Adobe patched flaws… Source link
Read More »Adobe Fixes 'Important' Flaws in ColdFusion, After Effects and Digital Editions – Threatpost
While Adobe’s regularly scheduled security updates were light this month, they fixed “important” severity vulnerabilities. Adobe released security patches for vulnerabilities in its ColdFusion, After Effects and Digital Editions applications. If exploited, the flaws could enable attackers to view sensitive data, gain escalated privileges, and launch denial-of-service attacks. Each of the bugs were rated important-severity, based on CVSS rankings, marking an extremely low-volume month for Adobe bug fixes. Overall Adobe patched flaws tied to five CVEs as part of its regularly scheduled security updates, Tuesday. That number pales in comparison to March, where Adobe patched… Source link
Read More »Adobe Releases Critical Patches for Acrobat Reader, Photoshop, Bridge, ColdFusion
Though it’s not Patch Tuesday, Adobe today released a massive batch of out-of-band software updates for six of its products to patch a total of 41 new security vulnerabilities. Adobe last week made a pre-announcement to inform its users of an upcoming security update for Acrobat and Reader, but the company today unveiled bugs in a total of 6 widely-used software, including: Adobe Genuine Integrity Service Adobe Acrobat and Reader Adobe Photoshop Adobe Experience Manager Adobe ColdFusion Adobe Bridge According to the security advisories, 29 of the 41 vulnerabilities are critical in severity, and the other 11 have been rated important. Adobe Acrobat and Reader software for Windows and macOS systems contain 13 flaws, out of which 9 are critical. Adobe Genuine Integrity Service, a… Source link
Read More »What Does The Future Version of ColdFusion Hold For You?
ColdFusion will be completing 25 successful years by July 2020. Within a few years of its launch in 1995, people started speculating the impending death of the language, but the development community members like us had faith in its future. ColdFusion has been growing stronger with years, and ever since it was acquired by Adobe, it was proved to be the most secure and robust language with a definite road map for the coming years. Future of ColdFusion The future version of Adobe’s ColdFusion will be cloud-based and server-free. In other words, it will no longer remain physical as in the past. Adobe ColdFusion 2020 CFScript will be ECMA Script compliant so that it will completely fix the script syntax issues that ColdFusion’s earlier versions had. It will be easier as programmers… Source link
Read More »What Does The Future Version of ColdFusion Hold For You?
ColdFusion will be completing 25 successful years by July 2020. Within a few years of its launch in 1995, people started speculating the impending death of the language, but the development community members like us had faith in its future. ColdFusion has been growing stronger with years, and ever since it was acquired by Adobe, it was proved to be the most secure and robust language with a definite road map for the coming years. Future of ColdFusion The future version of Adobe’s ColdFusion will be cloud-based and server-free. In other words, it will no longer remain physical as in the past. Adobe ColdFusion 2020 CFScript will be ECMA Script compliant so that it will completely fix the script syntax issues that ColdFusion’s… Source link
Read More »