[HackerNews] Cring Ransomware Gang Exploits 11-Year-Old ColdFusion Bug

Unidentified threat actors breached a server running an unpatched, 11-year-old version of Adobe’s ColdFusion 9 software in minutes to remotely take over control and deploy file-encrypting Cring ransomware on the target’s network 79 hours after the hack.
The server, which belonged to an unnamed services company, was used to collect timesheet and accounting data for payroll as well as to host a

Source: Read More (The Hacker News)

You might be interested in …

[BleepingComputer] FBI: Sextortion complaints spike leads to $8 million in losses

The FBI Internet Crime Complaint Center (IC3) has warned of a massive increase in sextortion complaints since the start of 2021, resulting in total financial losses of more than $8 million until the end of July. […] Source: Read More (BleepingComputer)

Read More

[ZDNet] ChaChi: a new GoLang Trojan used in attacks against US schools

All posts, ZDNet

The malware has found a role to play in ransomware strikes. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Ransomware Attackers Partnering With Cybercrime Groups to Hack High-Profile Targets

All posts, HackerNews

As ransomware attacks against critical infrastructure skyrocket, new research shows that threat actors behind such disruptions are increasingly shifting from using email messages as an intrusion route to purchasing access from cybercriminal enterprises that have already infiltrated major targets. “Ransomware operators often buy access from independent cybercriminal groups who infiltrate major Source: Read More (The […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.