Coldfusion Hosting

New online service will hack printers to spew out spam

After a Twitter user hacked over 50,000 printers last week to promote PewDiePie’s YouTube channel as part of a guerilla marketing campaign, a new service has spawned over the weekend advertising the same type of functionality, but for everyone. Going under the generic term of “Printer Advertising,” this new service claims it can hack printers all over the world to print out messages on demand, similar to the PewDiePie promo hack that took place over the weekend. “We have the ability to reach every single printer in the world,” claims a website launched on Sunday. “Reservations are limited.” The website was promoted by –you guessed it– flyers sent out to everyone’s printers. A copy of this… Source link

Read More »

Adobe ColdFusion servers under attack from APT group

Adobe ColdFusion servers under attack from APT group

A nation-state cyber-espionage group is actively hacking into Adobe ColdFusion servers and planting backdoors for future operations, Volexity researchers have told ZDNet. The attacks have been taking place since late September and have targeted ColdFusion servers that were not updated with security patches that Adobe released two weeks before, on September 11. It appears that hackers studied Adobe’s September patches and figured out how to exploit CVE-2018-15961 to their advantage. Classified as an “unauthenticated file upload,” this vulnerability allowed this APT group (APT stands for advanced persistent threat, another term used to describe nation-state cyber-espionage groups) to surreptitiously upload a version of the China Chopper… Source link

Read More »

ATP Group Attacks ColdFusion Servers

Posted on November 9, 2018 at 6:39 PM A cyberspying group appears to have reversed a security patch from Adobe and currently going after unpatched ColdFusion Servers. According to information gathered by Volexity researchers, a spying group is aggressively hacking into the servers of Adobe ColdFusion and creating backdoors for future attacks. This attack has been ongoing since late September with servers not updated with security patches released by Adobe on September 11. Apparently, the hackers have studied Adobe’s September patches and discovered a means of exploiting the CVE-2018-15961 to its advantage. Categorized as an “unauthenticated file upload,” this weakness allowed this nation-state… Source link

Read More »

The Long Tail of ColdFusion Fail — Krebs on Security

The Long Tail of ColdFusion Fail — Krebs on Security

Earlier this month, I published a story about a criminal hacking gang using Adobe ColdFusion vulnerabilities to build a botnet of hacked e-commerce sites that were milked for customer credit card data. Today’s post examines the impact that this botnet has had on several businesses, as well as the important and costly lessons these companies learned from the intrusions. Last Tuesday’s story looked at two victims; the jam and jelly maker Smucker’s, and SecurePay, a credit card processor based in Georgia. Most of the companies contacted for this story did not respond to requests for comment. The few business listed that did respond had remarkably similar stories to tell about the ordeal of trying to keep their businesses up and running in the face of such… Source link

Read More »

The Long Tail of ColdFusion Fail – Krebs on Security

The Long Tail of ColdFusion Fail – Krebs on Security

Earlier this month, I published a story about a criminal hacking gang using Adobe ColdFusion vulnerabilities to build a botnet of hacked e-commerce sites that were milked for customer credit card data. Today’s post examines the impact that this botnet has had on several businesses, as well as the important and costly lessons these companies learned from the intrusions. Last Tuesday’s story looked at two victims; the jam and jelly maker Smucker’s, and SecurePay, a credit card processor based in Georgia. Most of the companies contacted for this story did not respond to requests for comment. The few business listed that did respond had remarkably similar stories to tell about the ordeal of trying to keep their businesses up and running in the face of such… Source link

Read More »

Mo’ Shells Mo’ Problems – File List Stacking

Disclaimer: CrowdStrike derived this information from investigations in non-classified environments.  Since we value our clients’ privacy and interests, some data has been redacted or sanitized. In our first blog post, “Mo’ Shells Mo’ Problems: Deep Panda Web Shells – Part 1”, we discussed two web shells leveraged by a Chinese threat group we call Deep Panda.  In case you forgot, a web shell is a file containing backdoor functionality written in a web scripting language such ASP, ASPX, PHP, JSP or CFM.  When a web shell is hosted on an internet facing victim system, an adversary can remotely access the system to perform malicious actions. Today we’ll cover one of three ways to help hunt for web shells in your environment: file stacking.  We often use this method… Source link

Read More »

AAPT hack exploited ‘very old’ Cold Fusion hole – Security – Telco/ISP

AAPT hack exploited ‘very old’ Cold Fusion hole – Security – Telco/ISP

The vulnerability used by Anonymous hackers to breach and obtain data from AAPT and Queensland Government websites was “very old”, sources have told iTnews‘ sister site SC Magazine. AAPT yesterday confirmed a 12-month-old backup of its business website had been compromised with hackers retrieving two “historic” data files with “limited personal customer information” compromised. The… Source link

Read More »

Melbourne IT takes heat for Cold Fusion breach – Security – Telco/ISP

Melbourne IT takes heat for Cold Fusion breach – Security – Telco/ISP

Melbourne IT has admitted to hosting and operating both the Queensland Government and AAPT servers that suffered breaches this week at the hands of hackers purporting to be from a Anonymous splinter group. The group Ops Australia took credit for defacing nine Queensland Government websites related to tourism, science and economic development and stealing a 40 GB trove of customer data… Source link

Read More »

Develop ColdFusion Apps for Free — SitePoint

For web developers who are just starting out, the idea of learning ColdFusion can be daunting, especially given that hosting a commercial site on Adobe ColdFusion server has the potential to be quite costly. While Adobe does provide a free, fully functional developer version of its ColdFusion server, it only allows for a browser from the local machine, plus two IP addresses, to connect at a time. This can place restrictions on the development process. For example, if one was seeking help and wanted to share a work-in-progress with others, Adobe’s development server would prevent this. Introducing BlueDragon Enter the dragon! The BlueDragon Server, that is. BlueDragon is a CFML (ColdFusion Markup Language) web server (much like Adobe’s ColdFusion Server), created by a company… Source link

Read More »