Attacks

Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks – Go Health Pro

by
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks – Go Health Pro

Nov 26, 2024Ravie LakshmananVulnerability / Website Security Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could allow an unauthenticated attacker to install and enable malicious plugins on susceptible sites and potentially achieve remote code execution. The vulnerabilities, tracked as CVE-2024-10542 and CVE-2024-10781, carry a CVSS score of 9.8 out of … Read more

CISA Urges Agencies to Patch Critical “Array Networks” Flaw Amid Active Attacks – Go Health Pro

by
CISA Urges Agencies to Patch Critical “Array Networks” Flaw Amid Active Attacks – Go Health Pro

Nov 26, 2024Ravie LakshmananVulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched critical security flaw impacting Array Networks AG and vxAG secure access gateways to its Known Exploited Vulnerabilities (KEV) catalog following reports of active exploitation in the wild. The vulnerability, tracked as CVE-2023-28461 (CVSS score: 9.8), … Read more

Phishing attacks via ‘URL rewriting’ to evade detection escalate – Go Health Pro

by
Phishing attacks via ‘URL rewriting’ to evade detection escalate – Go Health Pro

Email attackers are increasingly exploiting “URL rewriting” in phishing attacks to evade detection while spreading malicious links, Perception Point researchers said in a blog post. URL rewriting is a security measure in which an email protection service such as a Secure Email Gateway (SEG) wraps any URLs contained in a received email with new links … Read more

Understanding Drive-By Download Cyber Attacks | Neuways – Go Health Pro

by
Understanding Drive-By Download Cyber Attacks | Neuways – Go Health Pro

At Neuways, we often see how minor oversights can lead to significant cyber security breaches. Imagine this scenario: an employee researching for a client visits what appears to be a legitimate website. Unbeknownst to them, malware disguised as a Trojan virus silently downloads onto their device. From there, the Trojan infiltrates the organisation’s network, and … Read more

New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration – Go Health Pro

by
New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration – Go Health Pro

Nov 12, 2024Ravie LakshmananVirtualization / Vulnerability Cybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution (RCE) The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators to capture user activity, and record keyboard and … Read more

x