Comment On Facebook Plugin Vulnerability

A new high severity WordPress vulnerability has been found in a Facebook chat plugin, which has been installed on over 80,000 WordPress websites. If exploited, attackers would be able to obtain “authorized” access to the chat plugin and be able to communicate with site visitors to carry out social engineering attacks in an effort to retrieve sensitive information.


EXPERTS COMMENTS
Josh Smith, Security Analyst,  Nuspire
August 07, 2020
This exploitation stresses the need to monitor vulnerabilities in relation to one’s tech stack and applications.
What makes this particular vulnerability so severe is the attacker’s ability to assume the role of the victim. Through social engineering and creating a “legitimate” story with the brand they assume, the attacker can create all kinds of themes to exploit a user by asking for personal information. As long as an attacker has a method to spin a story, social engineering attacks are always a thr ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article