Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections
Vulnerability / Cyber Espionage A recently patched security vulnerability in the 7-Zip archiver tool was exploited in the wild to deliver the SmokeLoader malware. The flaw, CVE-2025-0411 (CVSS score: ... Read more
-
cert.pl
Vulnerability in authentik software
CVE ID CVE-2024-11623 Publication date 04 February 2025 Vendor goauthentik Product authentik Vulnerable versions All before 2024.10.4 Vulnerability type (CWE) Improper Neutralization of Input During W ... Read more
-
tripwire.com
Tripwire Patch Priority Index for January 2025
Tripwire's January 2025 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft.First on the list are patches for the Microsoft office platform, including Word, Access, Visi ... Read more
-
security.nl
Google waarschuwt voor actief misbruikt usb-beveiligingslek in Android
Google waarschuwt eigenaren van een Androidtelefoon voor een actief misbruikte kwetsbaarheid in de kernel van het besturingssysteem die via usb is te misbruiken. Updates zijn nu uitgebracht, maar Goog ... Read more
-
The Hacker News
AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access
Vulnerability / Hardware Security A security vulnerability has been disclosed in AMD's Secure Encrypted Virtualization (SEV) that could permit an attacker to load a malicious CPU microcode under speci ... Read more
-
The Register
Google patches odd Android kernel security bug amid signs of targeted exploitation
Google has released its February Android security updates, including a fix for a high-severity kernel-level vulnerability, which is suspected to be in use by targeted exploits. The flaw, CVE-2024-5310 ... Read more
-
The Hacker News
Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score
Vulnerability / Cloud Security Microsoft has released patches to address two Critical-rated security flaws impacting Azure AI Face Service and Microsoft Account that could allow a malicious actor to e ... Read more
-
The Hacker News
Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104
Vulnerability / Mobile Security Google has shipped patches to address 47 security flaws in its Android operating system, including one it said has come under active exploitation in the wild. The vulne ... Read more
-
Trend Micro
CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks
Summary In September, 2024 the Zero Day Initiative (ZDI) Threat Hunting team identified the exploitation of a 7-Zip zero-day vulnerability used in a SmokeLoader malware campaign targeting Ukrainian en ... Read more
-
0patch.com
Micropatches Released for NTLM Hash Disclosure Spoofing Vulnerability (CVE-2024-43451)
November 2024 Windows updates brought a fix for CVE-2024-43451, an NTLM hash disclosure vulnerability that allows an attacker to obtain user's Net-NTLM hash when the user right-clicks, deletes or move ... Read more