If you’re still running ColdFusion 9 or 8, you are at grave risk of many vulnerabilities, but most notably is one hitting those who failed to apply a hotfix that Adobe had provided in 2010!

A recent spate of ransomware attacks have occurred, hitting such vulnerable servers, as reported in various security industry press.

If you may somehow still be running ColdFusion 9 or 8, again there was a fix that Adobe had made available back then (in 2010), as well as in Cumulative Hotfixes that followed it.

For more on who’s affected and who’s not (9.02, or 10 and above), and what you can do if you’re still on CF9 or 8 (including options to move OFF of such old CF versions), as well as more about the attack, see a post on my own web site with far more detail.