[nsp-sec] Adobe Cold Fusion Source code leaked due to data breach
Lawrence Baldwin
baldwinl at mynetwatchman.com
Thu Oct 3 16:59:06 EDT 2013
Hey...I have posted here in a while...was waiting for a good one.
https://krebsonsecurity.com/2013/10/adobe-to-announce-source-code-customer-data-breach/
One of subject's CF exploit servers:
195.3.146.59
Server doubles as exfil/backconnect server with outgoing flows from
victims as follows:
195.3.146.59:443
C2 involved shortly have initial compromise (via ColdFusion exploits):
kartmanscript.com
103.8.24.167
SKSA Malaysia
Enjoy.
--
Lawrence Baldwin
Chief Forensics Officer
myNetWatchman.com
Atlanta, GA
+1.678.624.0924
More information about the nsp-security
mailing list