An unnamed government entity associated with the United Arab Emirates (U.A.E.) was targeted by a likely Iranian threat actor to breach the victim’s Microsoft Exchange Server with a “simple yet effective” backdoor dubbed PowerExchange.
According to a new report from Fortinet FortiGuard Labs, the intrusion relied on email phishing as an initial access pathway, leading to the execution of a .NET Read More
Related Posts
![Merritt Baer: No one has to go down for you to go up. [CISO]](https://thecyberwire.com/images/social-media/career-notes/2023/168-career-notes-elevators.jpg?#)
Merritt Baer: No one has to go down for you to go up. [CISO]
Merritt Baer: No one has to go down for you to go up. [CISO]
This week our guest is Merritt Baer, a Field CISO from Lacework, and a cloud security unicorn, sits down to share her incredible story working through the ranks to get to where she is today. Before working at Lacework Merritt served in the Office of the CISO at Amazon Web Services, as part of a small elite team that formed a Deputy CISO. She provided technical cloud security guidance to AWS’ largest customers, like the Fortune 100, on security as a bottom line proposition. She also has experience in all three branches of government and the private sector and served as Lead Cyber Advisor to the Federal Communications Commission. Merritt shares some amazing advice for up and comers into the field, saying “my personal philosophy is that no one has to go down for you to go up. I’m always encouraging my colleagues, um, and other executives to be thinking about how we can, you know, steal, sharpen, steal, how we can be good for each other, how we can collaborate, how we can, um, create more strengths in one another.” We thank Merritt for sharing her story with us. Read More
The CyberWire
LiteSpeed Cache Plugin Flaw Let Attackers Inject Malicious Code, 5M+ Sites Impacted
LiteSpeed Cache Plugin Flaw Let Attackers Inject Malicious Code, 5M+ Sites Impacted
The popular LiteSpeed Cache plugin for WordPress has been found vulnerable to a Cross-Site Request Forgery (CSRF) attack, which could potentially impact over 5 million websites.
The flaw, identified as CVE-2024-3246, was publicly disclosed on July 23, 2024, and has been assigned a CVSS score of 6.1, categorizing it as a medium-severity vulnerability.
CVE-2024-3246 – LiteSpeed Cache Plugin Flaw
According to the Wordfence report, the vulnerability, discovered by security researcher Krzysztof Zając from CERT PL, affects all versions of the LiteSpeed Cache plugin up to and including 6.2.0.1.
The flaw stems from missing or incorrect nonce validation, a critical security measure to prevent CSRF attacks.
This oversight allows unauthenticated attackers to update the token setting and inject malicious JavaScript code via a forged request.
For the attack to be successful, the attacker must trick a site administrator into acting, such as clicking on a malicious link.
Join our free webinar to learn about combating slow DDoS attacks, a major threat today.
Vulnerability Details:
Affected Version<= 6.2.0.1Patched Version6.3
Impact and Mitigation
Given the widespread use of the LiteSpeed Cache plugin, the potential impact of this vulnerability is substantial. If exploited, attackers could inject malicious code, leading to various security issues, including data theft, site defacement, and exploitation of site visitors.
The vulnerability has been patched in version 6.3 of the LiteSpeed Cache plugin. Website administrators are strongly advised to immediately update their plugins to the latest version to mitigate the risk.
The update can be found on the official WordPress plugin repository. Wordfence Intelligence, which tracks vulnerabilities in WordPress plugins, emphasizes the importance of timely updates.
“This vulnerability highlights the critical need for regular plugin updates and vigilance in website security management,” a spokesperson from Wordfence stated.
As the digital landscape continues to evolve, ensuring the security of web applications remains paramount.
The discovery of CVE-2024-3246 is a stark reminder of the vulnerabilities within widely used software and the importance of proactive security measures.
Protect Your Business Emails From Spoofing, Phishing & BEC with AI-Powered Security | Free Demo
The post LiteSpeed Cache Plugin Flaw Let Attackers Inject Malicious Code, 5M+ Sites Impacted appeared first on Cyber Security News.