ColdFusion Targeted by Cyber Criminals
ColdFusion Targeted by Cyber Criminals
Web applications written with the ColdFusion development tools are now targeted by hackers. According to security firm SANS, a series of attacks aiming at flaws plaguing previous vesrsions of ColdFusion development apps, known as the FCKEditor text editing tool and the CKFinder file management tool.
SANS researcher Bojan Zdrnja said, "The attacks we've been seeing in the wild end up with inserted <script > tags into documents on compromised web sites."
"As you can probably guess by now, the script tags point to a whole chain of web sites which ultimately serve malware and try to exploit vulnerabilities on clients."
SANS recommend that all applications must be fully updated and that administrators should identify obsolete ColdFusion apps which could be a potential target of hackers.
- Littlefish Rescue Unavailable
- Main
- Rescue Me
- I'm on a Mac! Please Rescue Me
- Features
- Utility Computing
- Privacy
- Offers
- Jobs
- Testimonials
- Carbon Friendly
- Sitemap
- Our Culture
- Contact Us & Our Clients
- Company
- IT Support
- IT Services News
- Disclaimer
- IT Companies
- IT Services
- Emergency IT Support Cover
- IT Support Local Areas
