Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
- TheCyberThrone
VMware fixes CVE-2024-38814 in HCX
Broadcom disclosed a SQL injection vulnerability affecting VMware HCX, a key component used in multi-cloud infrastructures to enable application migration and disaster recovery.The vulnerability track ... Read more
- The Cyber Express
GitHub Issues Urgent Security Advisory on Critical Vulnerability in GitHub Enterprise Server
GitHub has released a critical security advisory highlighting vulnerabilities that merit immediate action from users of GitHub Enterprise Server (GHES). The advisory focuses on a GitHub vulnerability ... Read more
- Krypt3ia
Comprehensive Threat Intelligence Report: The Rise of Nation-State Cyber Attacks and Their Convergence with Cybercrime
TLP: WHITE This threat intelligence report was written in tandem between Krypt3ia and the ICEBREAKER Threat Intelligence Analyst created by Krypt3ia. Executive Summary Over the past year, nation-state ... Read more
- Cybersecurity News
CVE-2024-43240 & CVE-2024-43242 in Ultimate Membership Pro Plugin Put 40,000 Websites at Risk
The Ultimate Membership Pro plugin, a premium WordPress plugin widely used for managing membership subscriptions, has been found to contain two critical vulnerabilities, according to a report from Raf ... Read more
- The Hacker News
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
An advanced persistent threat (APT) actor with suspected ties to India has sprung forth with a flurry of attacks against high-profile entities and strategic infrastructures in the Middle East and Afri ... Read more
- Kaspersky
SAS CTF and the many ways to persist a kernel shellcode on Windows 7
SAS 17 Oct 2024 16 minute read On May 18, 2024, Kaspersky’s Global Research & Analysis Team (GReAT), with the help of its partners, held the qualifying stage of the SAS CTF, an international competiti ... Read more
- security.nl
Google verhelpt kritiek beveiligingslek in modem van Pixel-telefoons
Google heeft meerdere kritieke kwetsbaarheden in Pixel-telefoons verholpen, die aanwezig waren in de modem, het Trusty-besturingssysteem dat een Trusted Execution Environment (TEE) biedt en Advanced C ... Read more
- TheCyberThrone
Apache CloudStack fixes several vulnerabilities
Apache CloudStack project has announced the release of LTS security releases 4.18.2.4 and 4.19.1.2 to address four security vulnerabilitiesThe most severe vulnerability, CVE-2024-45219 with a CVSS sco ... Read more
- The Cyber Express
Critical Veeam Vulnerability CVE-2024-40711 Exploited by Ransomware Groups
Veeam has addressed a severe vulnerability in its widely utilized Backup & Replication tool, CVE-2024-40711. This critical flaw has a staggering Common Vulnerability Scoring System (CVSS) score of 9.8 ... Read more
- Dark Reading
Iran's APT34 Abuses MS Exchange to Spy on Gulf Gov'ts
Source: Daniren via Alamy Stock PhotoAn Iranian threat actor has been ramping up its espionage against Gulf-state government entities, particularly those within the United Arab Emirates (UAE).APT34 (a ... Read more