Attackers are exploiting critical SQL injection vulnerabilities, including CVE-2024-6670, in WhatsUp Gold, targeting unpatched systems. Active exploitation has been observed since the publication of proof-of-concept (PoC) exploit code on August 30. Despite updates from August 16, many organizations remain vulnerable, with attackers using these flaws to deploy remote access tools and raising concerns about potential ransomware attacks.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox