Two Critical Security Flaws Impacting WordPress Plugins Two serious security vulnerabilities have been identified in the Spam protection, Anti-Spam, and FireWall plugin for WordPress. These flaws could allow an unauthenticated attacker to install and enable malicious plugins on vulnerable sites, potentially leading to remote code execution. The critical vulnerabilities, registered as CVE-2024-10542 and CVE-2024-10781, carry…

Understanding Vulnerability Management with Intruder’s Intel When CVEs (Common Vulnerabilities and Exposures) go viral, it becomes crucial for organizations to differentiate critical vulnerabilities from the noise. Protecting your organization requires swift action and informed decisions. That's why Intruder, a leader in attack surface management, developed Intel—a free vulnerability intelligence platform aimed at helping you prioritize…

Earth Estries and the GHOSTSPIDER Backdoor Threat The threat actor known as Earth Estries, linked to China, has recently been seen using a new and previously undocumented backdoor called GHOSTSPIDER. This particular backdoor has been part of their attacks targeting telecommunications companies in Southeast Asia. According to Trend Micro, a cybersecurity firm, Earth Estries is…

RomCom Threat Actor Exploits Zero-Day Flaws in Firefox and Windows The Russia-aligned threat actor known as RomCom has recently exploited two significant security flaws: one in Mozilla Firefox and another in Microsoft Windows. These vulnerabilities are part of a broader set of attacks aimed at delivering the RomCom backdoor onto victim systems. Understanding these exploits…

Critical Security Flaw in Array Networks AG and vxAG Secure Access Gateways On Monday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerabilities (KEV) catalog to include a critical security flaw affecting Array Networks AG and vxAG secure access gateways. This flaw, identified as CVE-2023-28461, has a CVSS score of 9.8,…

PyPI Quarantines "aiocpa": A Cautionary Tale for Developers The Python Package Index (PyPI) has recently taken action against the package "aiocpa." This quarantine follows a troubling update that introduced malicious code designed to exfiltrate private keys through Telegram. This incident serves as a stark reminder of the importance of software integrity and security, particularly in…

Google Introduces Restore Credentials for Easy Account Migration Google has unveiled a new feature called Restore Credentials. This tool helps users restore their account access to third-party apps securely when they migrate to a new Android device. Designed to ease the transition between devices, Restore Credentials means users no longer have to re-enter their login…

New Attack Techniques Targeting Infrastructure-as-Code and Policy-as-Code Tools Cybersecurity researchers have uncovered two significant attack techniques targeting infrastructure-as-code (IaC) and policy-as-code (PaC) tools like HashiCorp's Terraform and Open Policy Agent (OPA). These tools utilize dedicated, domain-specific languages (DSLs) meant to enhance security when managing cloud infrastructure. However, the discovery of these vulnerabilities raises important concerns…