The National Cyber Emergency Response Team (CERT) has issued a critical alert about serious security vulnerabilities in a widely used workflow automation tool. The flaws could allow hackers to take full control of business systems, servers, and connected applications.
CERT explained that the vulnerabilities enable attackers to bypass security protections and access sensitive information, including encryption keys that protect stored passwords. With these keys, hackers could decrypt credentials, access company apps, and maintain long-term control over enterprise systems.
The issues have been rated critical, with a severity score of 9.5 out of 10. Both cloud-based services and on-premise servers are affected, particularly those connected to the internet or accessible publicly. CERT emphasized that organizations must act immediately to prevent potential breaches.
Recommended measures include updating the software, strengthening access controls, auditing workflows, and changing stored passwords. While temporary steps, such as disabling certain features, can reduce immediate risk, they are insufficient to prevent serious attacks.
CERT warned that ignoring these vulnerabilities could lead to data theft, unauthorized access, and full compromise of corporate networks. Businesses of all sizes that rely on this tool are advised to follow the guidance carefully.
Cybersecurity experts note that workflow automation software often integrates multiple apps, making it a valuable target for attackers. CERT’s alert highlights the need for continuous monitoring and prompt patching to protect critical business information.
The alert serves as a reminder that organizations must maintain strong cybersecurity practices. CERT stressed that timely updates and strict access management are essential to safeguard enterprise systems. Companies are encouraged to review all related workflows and implement the recommended safeguards immediately.
In other related news also read Iranian Hackers Claim to Hack Israeli Officials, Leak Private Content
Taking swift action will help prevent potential damage and ensure the security and integrity of sensitive data. CERT’s warning underscores the importance of proactive cybersecurity measures in today’s connected business environment.
