Mass Exploitation Campaign Targeting Adobe ColdFusion Servers Detected During Christmas Holiday

A coordinated exploitation campaign targeted Adobe ColdFusion servers across the globe during the Christmas 2025 holiday period, generating 5,940 malicious requests that probed 10+ ColdFusion CVEs disclosed between 2023 and 2024. Telemetry indicates 68% of the activity occurred on December 25, suggesting deliberate timing to exploit reduced security monitoring during holidays. The vast majority of […]

The post Mass Exploitation Campaign Targeting Adobe ColdFusion Servers Detected During Christmas Holiday appeared first on SecPod Blog.