- According to a report by Volexity, Adobe’s ColdFusion servers are under attack from a nation-state hacker group.
- Cyber-espionage group APT have been actively attacking the servers since September and have targeted two of Adobe’s servers.
- Adobe has already patched vulnerabilities in a bid to prevent future attacks.
Hackers from the APT group, which is a nation-state cyber-espionage organization, were able to break into Adobe ColdFusion servers after figuring out a means to take advantage of the CVE-2018-15961 exploit. The attacks started two weeks before Adobe officially patched the exploit on their servers in September.
The vulnerability allowed unauthenticated file uploads, causing APT to immediately try and exploit