Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
AFP Under Cyberattack: News Delivery Disrupted, Investigation Underway
The French news agency AFP (Agence France-Presse) was hit by a cyberattack on Friday, September 27th, causing disruptions to some of its news delivery systems. Technical experts from AFP, in collabora ... Read more
-
seclists.org
SEC Consult SA-20240930-0 :: Local Privilege Escalation via MSI Installer in Nitro PDF Pro (CVE-2024-35288)
Full Disclosure mailing list archives From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 30 Sep 2024 07:00:06 +0000 Attachment: smime.p7s Description: S ... Read more
-
Cybersecurity News
Researcher Details RCE Flaw (CVE-2024-36435) in Supermicro BMC IPMI Firmware
A newly discovered critical vulnerability, CVE-2024-36435, has been uncovered in several Supermicro enterprise products, potentially exposing organizations to significant security risks. Discovered by ... Read more
-
Cybersecurity News
CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has once again raised the alarm, adding four new security vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These a ... Read more
-
TheCyberThrone
CISA KEV Update Part VII – September 2024
The US CISA has added 4 vulnerabilities to its Known Exploited Vulnerability Catalog, based on the evidence of exploitationCVE-2019-0344 SAP Commerce Cloud Deserialization of Untrusted Data Vulnerabil ... Read more
-
Cybersecurity News
KartLANPwn (CVE-2024-45200) Exploits Mario Kart 8 Deluxe LAN Play Feature for RCE
A serious vulnerability, dubbed KartLANPwn (CVE-2024-45200), has been identified in the wildly popular Nintendo game Mario Kart 8 Deluxe, putting millions of players at risk of remote code execution ( ... Read more
-
Cybersecurity News
Hadooken & K4Spreader Malware: 8220 Gang’s Latest Cloud Hijacking Tools
Linux infection routine | Image: Sekoia’s Threat Detection & Research (TDR) teamThe notorious 8220 Gang, a China-based intrusion set first identified in 2018, continues to expand its arsenal with two ... Read more
-
Cybersecurity News
PLANET Technology Switches Face CVE-2024-8456 (CVSS 9.8), Urgent Firmware Updates Advised
The Taiwan Computer Emergency Response Team (TWCERT/CC) has released a series of security advisories highlighting critical vulnerabilities affecting various PLANET Technology switch models. These vuln ... Read more
-
Cybersecurity News
CVE-2024-22170 (CVSS 9.2): Western Digital Addresses Critical Flaw in My Cloud Devices
Western Digital has released a security advisory addressing a high-severity vulnerability (CVE-2024-22170) impacting a range of My Cloud devices. The vulnerability, which carries a CVSS score of 9.2, ... Read more
-
TheCyberThrone
Storm-0501 deploys Embargo Ransomware in Hybrid Cloud Environment
Security researchers from Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement ... Read more