CISA has added a critical vulnerability, CVE-2024-11182, affecting MDaemon Email Server to its Known Exploited Vulnerabilities Catalog. This XSS flaw allows attackers to execute harmful JavaScript via infected HTML emails, risking user sessions. MDaemon has issued a patch for affected versions. Organizations must apply updates promptly or consider disabling the vulnerable service.
More_Eggs Malware Exploits Job Application Emails to Deliver Malicious Payloads
The More_Eggs malware has seen a comeback, becoming a significant threat to corporations, targeting HR departments with job applications carrying malicious contents. Operated by the
