CYBER Threat Intelligence Reports


Targeted Identity-Based Attacks on Snowflake Customers: Potential Triggers and Response

Snowflake is investigating targeted identity-based attacks exploiting customer credentials. On May 31st, 2024, Snowflake, CrowdStrike, and Mandiant confirmed the investigation, finding no vulnerabilities in Snowflake’s…

Read more >

CVE-2024-3820 in wpDataTables Puts 70,000 WordPress Sites at Risk

A critical SQL injection vulnerability (CVE-2024-3820, CVSS 10) in the wpDataTables WordPress plugin has put 70,000 sites at risk. Discovered by security researcher villu164, the…

Read more >

Active Exploitation of Stored XSS Vulnerabilities in WordPress Plugins (CVE-2024-2194, CVE-2023-6961, CVE-2023-40000)

Recent cyberattacks are exploiting stored XSS vulnerabilities in WordPress plugins WP Statistics, WP Meta SEO, and LiteSpeed Cache (CVE-2024-2194, CVE-2023-6961, CVE-2023-40000). These flaws allow attackers…

Read more >

Over 13,800 Checkpoint Gateways Vulnerable to CVE-2024-24919 Zero-Day Exploit

Recent analysis identifies over 13,800 Check Point gateways exposed to CVE-2024-24919, an arbitrary file read vulnerability. This flaw allows attackers to access any file on…

Read more >

CVE-2024-2771: Unauthenticated Attackers Can Hijack 400K+ WordPress Sites via Fluent Forms Bug

A critical vulnerability (CVE-2024-2771) in the Fluent Forms WordPress plugin, affecting over 400,000 sites, allows unauthenticated attackers to gain administrative access, leading to potential website…

Read more >

CVE-2024-3368: Vulnerability in All in One SEO Plugin Threatens Millions of WordPress Sites

A critical authenticated stored XSS vulnerability (CVE-2024-3368) has been discovered in the All in One SEO (AIOSEO) WordPress plugin, affecting versions up to 4.6.0. This…

Read more >

Cybersecurity Best Practice

Under Cyber Attack?

Fill out the form and we will contact you immediately.