Lucene search
K

5 matches found

hivepro
hivepro
added 2023/12/07 5:51 a.m.39 views

Adobe ColdFusion Vulnerability Leads to Federal Agency Breach

Summary: Unidentified threat actors exploit Adobe ColdFusion vulnerability CVE-2023-26360 on government servers, leading to potential unauthorized code execution. Incidents involve reconnaissance, data extraction attempts, and emphasize the importance of software updates. Threat Level - Red |...

5CVSS7.7AI score0.97339EPSS
Exploits13
The Hacker News
The Hacker News
added 2023/12/06 10:10 a.m.51 views

Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers

The U.S. Cybersecurity and Infrastructure Security Agency CISA warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors to gain initial access to government servers. "The vulnerability in ColdFusion CVE-2023-26360 presents as an improper access...

9.8CVSS8.1AI score0.97339EPSS
Exploits13
ICS
ICS
added 2023/12/05 12:0 p.m.71 views

Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers

Actions to take today to mitigate malicious cyber activity: 1. Prioritize remediating known exploited vulnerabilities. 2. Employ proper network segmentation. 3. Enable multifactor authentication MFA for all services to the extent possible, particularly for webmail, VPN, and accounts that access...

9.8CVSS8.8AI score0.97339EPSS
Exploits13References98
CISA
CISA
added 2023/06/15 12:0 p.m.9 views

CISA, FBI, and MS-ISAC Update Joint CSA on Progress Telerik Vulnerabilities

Today, CISA, the Federal Bureau of Investigation FBI, and Multi-State Information Sharing and Analysis Center MS-ISAC released an update for joint Cybersecurity Advisory CSA Threat Actors Exploit Progress Telerik Vulnerability in U.S. Government IIS Server. This iteration of the CSA—now renamed...

9.8CVSS7.4AI score0.99737EPSS
In wildExploits19References3
ThreatPost
ThreatPost
added 2013/02/06 3:32 a.m.17 views

Federal Reserve Admits It was Briefly Hacked During Super Bowl

Two days after the group Anonymous boasted it had broken into a government Web site and had the data dump to prove it, the U.S. Federal Reserve admitted it was hacked. “The Federal Reserve system is aware that information was obtained by exploiting a temporary vulnerability in a website vendor...

Exploits0References2
Rows per page
Query Builder