Moxa patches two flaws in its OT devices, one a critical RCE   – Go Health Pro

Moxa patches two flaws in its OT devices, one a critical RCE   – Go Health Pro

Industrial networking device maker Moxa on Jan. 3 released patches for two bugs in its cellular routers, secure routers, and network security appliances, many of which operate in the critical infrastructure sector. One of the bugs — CVE-2024-9140 — was a critical 9.3 flaw that could potentially allow a remote code execution (RCE), posing significant risk … Read more

Researchers find security flaws in Skoda cars that may let hackers remotely track them – Go Health Pro

Researchers find security flaws in Skoda cars that may let hackers remotely track them – Go Health Pro

Security researchers have discovered multiple vulnerabilities in the infotainment units used in some Skoda cars that could allow malicious actors to remotely trigger certain controls and track the cars’ location in real time. PCAutomotive, a cybersecurity firm specializing in the automotive sector, unveiled 12 new security vulnerabilities impacting the latest model of the Skoda Superb … Read more

GUEST ESSAY: The key role static code analyzers play in detecting coding errors, eliminating flaws – Go Health Pro

GUEST ESSAY: The key role static code analyzers play in detecting coding errors, eliminating flaws – Go Health Pro

By Andrey Karpov In the modern world of software development, code quality is becoming a critical factor that determines a project success. Errors in code can entail severe consequences. Related: The convergence of network, application security For example, vulnerabilities in banking applications can lead to financial data leaks, and errors in medical systems can threaten … Read more

Over Two Dozen Flaws Identified in Advantech Industrial Wi-Fi Access Points – Patch ASAP – Go Health Pro

Over Two Dozen Flaws Identified in Advantech Industrial Wi-Fi Access Points – Patch ASAP – Go Health Pro

Nov 28, 2024Ravie LakshmananIoT Security / Vulnerability Nearly two dozen security vulnerabilities have been disclosed in Advantech EKI industrial-grade wireless access point devices, some of which could be weaponized to bypass authentication and execute code with elevated privileges. “These vulnerabilities pose significant risks, allowing unauthenticated remote code execution with root privileges, thereby fully compromising the … Read more

Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks – Go Health Pro

Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks – Go Health Pro

Nov 26, 2024Ravie LakshmananVulnerability / Website Security Two critical security flaws impacting the Spam protection, Anti-Spam, and FireWall plugin WordPress could allow an unauthenticated attacker to install and enable malicious plugins on susceptible sites and potentially achieve remote code execution. The vulnerabilities, tracked as CVE-2024-10542 and CVE-2024-10781, carry a CVSS score of 9.8 out of … Read more