{"id":4497,"date":"2023-12-06T11:50:54","date_gmt":"2023-12-06T11:50:54","guid":{"rendered":"https:\/\/secry.me\/explore\/?p=4497"},"modified":"2023-12-06T12:21:06","modified_gmt":"2023-12-06T12:21:06","slug":"federal-agency-servers-breached-utilizing-coldfusion-vulnerability","status":"publish","type":"post","link":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/","title":{"rendered":"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability"},"content":{"rendered":"<div class=\"c7f5092f831f91fb6af859cc3a8052cc\" data-index=\"4\" style=\"float: none; margin:10px 0 10px 0; text-align:center;\">\n<script async src=\"https:\/\/securepubads.g.doubleclick.net\/tag\/js\/gpt.js\"><\/script>\r\n<script>\r\n  window.googletag = window.googletag || {cmd: []};\r\n  googletag.cmd.push(function() {\r\n    googletag.defineSlot('\/22608490431\/iklan1', [[320, 100], [300, 50]], 'div-gpt-ad-1696178236578-0').addService(googletag.pubads());\r\n    googletag.pubads().enableSingleRequest();\r\n    googletag.enableServices();\r\n  });\r\n<\/script>\r\n<!-- \/22608490431\/iklan1 -->\r\n<div id='div-gpt-ad-1696178236578-0' style='min-width: 300px; min-height: 50px;'>\r\n  <script>\r\n    googletag.cmd.push(function() { googletag.display('div-gpt-ad-1696178236578-0'); });\r\n  <\/script>\r\n<\/div>\n<\/div>\n<p><strong>Federal Agency Servers Breached &#8211; ColdFusion Vulnerability (CVE-2023-26360) &#8211; Recent alert<\/strong>, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about the active <a href=\"https:\/\/secry.me\/explore\/news\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/\">exploitation of a significant Adobe ColdFusion vulnerability<\/a> by unidentified threat actors. This breach has allowed unauthorized access to government servers, with the affected period pinpointed between <strong>June<\/strong> and <strong>July<\/strong> 2023.<\/p>\n<h4>Identifying the Vulnerability (CVE-2023-26360): An Improper Access Control Concern<\/h4>\n<p>The vulnerability thats make <strong>Federal Agency Breached<\/strong> in question, identified as CVE-2023-26360 (more info <a href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2023\/12\/05\/cisa-releases-advisory-threat-actors-exploiting-cve-2023-26360-vulnerability-adobe-coldfusion\" target=\"_blank\" rel=\"nofollow noopener\">here<\/a>), is characterized by an improper access control issue, making it susceptible to arbitrary code execution. CISA highlighted that a specific federal agency fell victim to this cyber attack during the aforementioned time frame. &#8211; <em>Even the Hackers also Breach other Government Servers Through ColdFusion Vulnerability.<\/em><\/p>\n<p>&nbsp;<\/p>\n<h3>Addressing the Flaw, Adobe&#8217;s Swift Response and Updates<\/h3>\n<p>The impact of this flaw extends to ColdFusion 2018 (Update 15 and earlier versions) as well as ColdFusion 2021 (Update 5 and earlier versions). Adobe promptly addressed the issue in versions Update 16 and Update 6, both released on March 14, 2023.<\/p>\n<p>Adding urgency to the matter, CISA swiftly included this vulnerability in the Known Exploited Vulnerabilities (KEV) catalog, indicating tangible evidence of ongoing exploitation in the wild. Concurrently, Adobe acknowledged the situation in an advisory, stating awareness of the flaw being &#8220;exploited in the wild in very limited attacks.&#8221;<\/p>\n<p>&nbsp;<\/p>\n<h3>The Attack: Compromised Servers and Malicious Commands Lead to<\/h3>\n<p>Investigations by CISA revealed that the attackers compromised at least two public-facing servers, both running outdated ColdFusion software versions. Exploiting the identified vulnerability, threat actors executed various commands on these compromised servers, enabling them to drop malware through HTTP POST commands directed to the ColdFusion-associated directory path.<\/p>\n<p>While the malicious activity appears to be centered around reconnaissance efforts aimed at mapping the broader network, no lateral movement or data exfiltration has been detected so far.<\/p>\n<p>&nbsp;<\/p>\n<h3>Malicious Operations: From File System Navigation to Trojan Deployment Lead to Federal Agency Servers Breach<\/h3>\n<p>In one incident, the adversaries were observed navigating the filesystem, uploading diverse artifacts to the web server. These included binaries capable of exporting web browser cookies and malware designed to decrypt passwords for ColdFusion data sources.<\/p>\n<p>A separate event in early June 2023 involved the deployment of a remote access trojan\u2014a modified version of the <a href=\"https:\/\/github.com\/Tas9er\/ByPassGodzilla\" target=\"_blank\" rel=\"nofollow noopener\">ByPassGodzilla<\/a> web shell. This trojan utilized a JavaScript loader for infection and required communication with an actor-controlled server to carry out actions.<\/p>\n<p>Additionally, the threat actors attempted to exfiltrate Windows Registry files and, unsuccessfully, to download data from a command-and-control (C2) server. CISA&#8217;s analysis strongly suggests that the threat actors likely accessed data in the ColdFusion seed.properties file through the web shell interface. This file contains seed values and encryption methods used for password encryption, though no malicious code was found indicating attempts to decode passwords using these values.<\/p>\n<p>This cybersecurity breach serves as a stark reminder of the ongoing threats faced by federal agencies, highlighting the importance of promptly addressing and patching known vulnerabilities to safeguard critical information. &#8211; <em>Federal Agency Servers Breached<\/em><\/p>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n<div id=\"urban-overlay\" style=\"left: -10px; top: -10px; width: 0px; height: 0px;\"><\/div>\n\n<div style=\"font-size: 0px; height: 0px; line-height: 0px; margin: 0; padding: 0; clear: both;\"><\/div>","protected":false},"excerpt":{"rendered":"<p>Federal Agency Servers Breached &#8211; ColdFusion Vulnerability (CVE-2023-26360) &#8211; Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about the active exploitation of a significant Adobe ColdFusion vulnerability by unidentified threat actors. This breach has allowed unauthorized access to government servers, with the affected period pinpointed between June and July [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":4511,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[194,131],"tags":[424,423,291,426,192,301,183,425,427],"class_list":["post-4497","post","type-post","status-publish","format-standard","has-post-thumbnail","category-cyber-security","category-news","tag-cisa","tag-coldfusion","tag-cve","tag-cve-2023-26360","tag-cyber-security","tag-data-breach","tag-data-breached","tag-federal-agency","tag-server"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v21.4 (Yoast SEO v27.6) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Federal Agency Servers Breached Utilizing ColdFusion Vulnerability | SECRY<\/title>\n<meta name=\"description\" content=\"Federal Agency Servers Breached - ColdFusion Vulnerability (CVE-2023-26360) - Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability | SECRY\" \/>\n<meta property=\"og:description\" content=\"Federal Agency Servers Breached - ColdFusion Vulnerability (CVE-2023-26360) - Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency\" \/>\n<meta property=\"og:url\" content=\"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/\" \/>\n<meta property=\"og:site_name\" content=\"SECRY\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/secry.me\" \/>\n<meta property=\"article:published_time\" content=\"2023-12-06T11:50:54+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-12-06T12:21:06+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/secryweb.sirv.com\/WP_secry.me\/2023\/12\/FEDERAL-AGENCY-BREACH.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Christin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Christin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"NewsArticle\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/\"},\"author\":{\"name\":\"Christin\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#\\\/schema\\\/person\\\/907be2b2cdf630b0640516d22bb40deb\"},\"headline\":\"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability\",\"datePublished\":\"2023-12-06T11:50:54+00:00\",\"dateModified\":\"2023-12-06T12:21:06+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/\"},\"wordCount\":507,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/secry.me\\\/explore\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/FEDERAL-AGENCY-BREACH.png\",\"keywords\":[\"CISA\",\"Coldfusion\",\"CVE\",\"CVE-2023-26360\",\"Cyber Security\",\"Data Breach\",\"Data Breached\",\"Federal Agency\",\"Server\"],\"articleSection\":[\"Cyber Security\",\"Hacker News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/\",\"url\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/\",\"name\":\"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability | SECRY\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/secry.me\\\/explore\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/FEDERAL-AGENCY-BREACH.png\",\"datePublished\":\"2023-12-06T11:50:54+00:00\",\"dateModified\":\"2023-12-06T12:21:06+00:00\",\"description\":\"Federal Agency Servers Breached - ColdFusion Vulnerability (CVE-2023-26360) - Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#primaryimage\",\"url\":\"https:\\\/\\\/secry.me\\\/explore\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/FEDERAL-AGENCY-BREACH.png\",\"contentUrl\":\"https:\\\/\\\/secry.me\\\/explore\\\/wp-content\\\/uploads\\\/2023\\\/12\\\/FEDERAL-AGENCY-BREACH.png\",\"width\":1280,\"height\":720,\"caption\":\"Federal Agency Breach Through Adobe ColdFusion Vulnerability (CVE-2023-26360)\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/secry.me\\\/explore\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#website\",\"url\":\"https:\\\/\\\/secry.me\\\/explore\\\/\",\"name\":\"SECRY\",\"description\":\"#1 Cyber [SEC]urity Sto[RY]  -  News &amp; Bug Bounty Story Collections\",\"publisher\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#organization\"},\"alternateName\":\"Security Story\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/secry.me\\\/explore\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#organization\",\"name\":\"#1 Cyber [SEC]urity Sto[RY] - News & Bug Bounty Story Collections\",\"alternateName\":\"SECRY\",\"url\":\"https:\\\/\\\/secry.me\\\/explore\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/secryweb.sirv.com\\\/WP_secry.me\\\/2022\\\/06\\\/cropped-SECRY.webp\",\"contentUrl\":\"https:\\\/\\\/secryweb.sirv.com\\\/WP_secry.me\\\/2022\\\/06\\\/cropped-SECRY.webp\",\"width\":512,\"height\":512,\"caption\":\"#1 Cyber [SEC]urity Sto[RY] - News & Bug Bounty Story Collections\"},\"image\":{\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/secry.me\",\"https:\\\/\\\/pinterest.com\\\/secry_me\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/secry.me\\\/explore\\\/#\\\/schema\\\/person\\\/907be2b2cdf630b0640516d22bb40deb\",\"name\":\"Christin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/b5497f25505814356d5235813688d08a9e63670586640e4bb29680889eabcc9b?s=96&d=robohash&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/b5497f25505814356d5235813688d08a9e63670586640e4bb29680889eabcc9b?s=96&d=robohash&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/b5497f25505814356d5235813688d08a9e63670586640e4bb29680889eabcc9b?s=96&d=robohash&r=g\",\"caption\":\"Christin\"},\"description\":\"A cybersecurity practitioner with more than 5 years of experience in the cybersecurity world. Has an interest in creating simple blog websites, learning about SEO and graphic design, writing, AI, and understanding the concepts of journalism. Intentionally created this website to make the world of cybersecurity more engaging by combining it with journalistic principles and presenting cybersecurity stories that are easy to understand, which can help anyone who wants to develop in the cybersecurity world.\",\"sameAs\":[\"https:\\\/\\\/secry.me\\\/explore\"],\"url\":\"https:\\\/\\\/secry.me\\\/explore\\\/author\\\/secry\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability | SECRY","description":"Federal Agency Servers Breached - ColdFusion Vulnerability (CVE-2023-26360) - Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/","og_locale":"en_US","og_type":"article","og_title":"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability | SECRY","og_description":"Federal Agency Servers Breached - ColdFusion Vulnerability (CVE-2023-26360) - Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency","og_url":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/","og_site_name":"SECRY","article_publisher":"https:\/\/www.facebook.com\/secry.me","article_published_time":"2023-12-06T11:50:54+00:00","article_modified_time":"2023-12-06T12:21:06+00:00","og_image":[{"width":1280,"height":720,"url":"https:\/\/secryweb.sirv.com\/WP_secry.me\/2023\/12\/FEDERAL-AGENCY-BREACH.png","type":"image\/png"}],"author":"Christin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Christin","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#article","isPartOf":{"@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/"},"author":{"name":"Christin","@id":"https:\/\/secry.me\/explore\/#\/schema\/person\/907be2b2cdf630b0640516d22bb40deb"},"headline":"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability","datePublished":"2023-12-06T11:50:54+00:00","dateModified":"2023-12-06T12:21:06+00:00","mainEntityOfPage":{"@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/"},"wordCount":507,"commentCount":0,"publisher":{"@id":"https:\/\/secry.me\/explore\/#organization"},"image":{"@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#primaryimage"},"thumbnailUrl":"https:\/\/secry.me\/explore\/wp-content\/uploads\/2023\/12\/FEDERAL-AGENCY-BREACH.png","keywords":["CISA","Coldfusion","CVE","CVE-2023-26360","Cyber Security","Data Breach","Data Breached","Federal Agency","Server"],"articleSection":["Cyber Security","Hacker News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/","url":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/","name":"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability | SECRY","isPartOf":{"@id":"https:\/\/secry.me\/explore\/#website"},"primaryImageOfPage":{"@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#primaryimage"},"image":{"@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#primaryimage"},"thumbnailUrl":"https:\/\/secry.me\/explore\/wp-content\/uploads\/2023\/12\/FEDERAL-AGENCY-BREACH.png","datePublished":"2023-12-06T11:50:54+00:00","dateModified":"2023-12-06T12:21:06+00:00","description":"Federal Agency Servers Breached - ColdFusion Vulnerability (CVE-2023-26360) - Recent alert, the U.S. Cybersecurity and Infrastructure Security Agency","breadcrumb":{"@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#primaryimage","url":"https:\/\/secry.me\/explore\/wp-content\/uploads\/2023\/12\/FEDERAL-AGENCY-BREACH.png","contentUrl":"https:\/\/secry.me\/explore\/wp-content\/uploads\/2023\/12\/FEDERAL-AGENCY-BREACH.png","width":1280,"height":720,"caption":"Federal Agency Breach Through Adobe ColdFusion Vulnerability (CVE-2023-26360)"},{"@type":"BreadcrumbList","@id":"https:\/\/secry.me\/explore\/federal-agency-servers-breached-utilizing-coldfusion-vulnerability\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/secry.me\/explore\/"},{"@type":"ListItem","position":2,"name":"Federal Agency Servers Breached Utilizing ColdFusion Vulnerability"}]},{"@type":"WebSite","@id":"https:\/\/secry.me\/explore\/#website","url":"https:\/\/secry.me\/explore\/","name":"SECRY","description":"#1 Cyber [SEC]urity Sto[RY]  -  News &amp; Bug Bounty Story Collections","publisher":{"@id":"https:\/\/secry.me\/explore\/#organization"},"alternateName":"Security Story","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/secry.me\/explore\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/secry.me\/explore\/#organization","name":"#1 Cyber [SEC]urity Sto[RY] - News & Bug Bounty Story Collections","alternateName":"SECRY","url":"https:\/\/secry.me\/explore\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secry.me\/explore\/#\/schema\/logo\/image\/","url":"https:\/\/secryweb.sirv.com\/WP_secry.me\/2022\/06\/cropped-SECRY.webp","contentUrl":"https:\/\/secryweb.sirv.com\/WP_secry.me\/2022\/06\/cropped-SECRY.webp","width":512,"height":512,"caption":"#1 Cyber [SEC]urity Sto[RY] - News & Bug Bounty Story Collections"},"image":{"@id":"https:\/\/secry.me\/explore\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/secry.me","https:\/\/pinterest.com\/secry_me"]},{"@type":"Person","@id":"https:\/\/secry.me\/explore\/#\/schema\/person\/907be2b2cdf630b0640516d22bb40deb","name":"Christin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/b5497f25505814356d5235813688d08a9e63670586640e4bb29680889eabcc9b?s=96&d=robohash&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/b5497f25505814356d5235813688d08a9e63670586640e4bb29680889eabcc9b?s=96&d=robohash&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b5497f25505814356d5235813688d08a9e63670586640e4bb29680889eabcc9b?s=96&d=robohash&r=g","caption":"Christin"},"description":"A cybersecurity practitioner with more than 5 years of experience in the cybersecurity world. Has an interest in creating simple blog websites, learning about SEO and graphic design, writing, AI, and understanding the concepts of journalism. Intentionally created this website to make the world of cybersecurity more engaging by combining it with journalistic principles and presenting cybersecurity stories that are easy to understand, which can help anyone who wants to develop in the cybersecurity world.","sameAs":["https:\/\/secry.me\/explore"],"url":"https:\/\/secry.me\/explore\/author\/secry\/"}]}},"_links":{"self":[{"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/posts\/4497","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/comments?post=4497"}],"version-history":[{"count":13,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/posts\/4497\/revisions"}],"predecessor-version":[{"id":4512,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/posts\/4497\/revisions\/4512"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/media\/4511"}],"wp:attachment":[{"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/media?parent=4497"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/categories?post=4497"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/secry.me\/explore\/wp-json\/wp\/v2\/tags?post=4497"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}