Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CrowdStrike.com
January 2025 Patch Tuesday: 10 Critical Vulnerabilities and Eight Zero-Days Among 159 CVEs
Microsoft has released security updates for 159 vulnerabilities in its January 2025 Patch Tuesday rollout. Among these are 10 Critical vulnerabilities and eight zero-days affecting the Windows Hyper-V ... Read more
-
Dark Reading
Unpatched Zyxel CPE Zero-Day Pummeled by Cyberattackers
Source: Timon Schneider via Alamy Stock PhotoNEWS BRIEFA command-injection vulnerability in Zyxel CPE Series devices is being targeted by threat actors, and there's no patch available.The bug, tracked ... Read more
-
BleepingComputer
Laravel admin package Voyager vulnerable to one-click RCE flaw
Three vulnerabilities discovered in the open-source PHP package Voyager for managing Laravel applications could be used for remote code execution attacks. The issues remain unfixed and can be exploite ... Read more
-
CrowdStrike.com
January 2025 Patch Tuesday: 10 Critical Vulnerabilities and Eight Zero-Days Among 159 CVEs
Microsoft has released security updates for 159 vulnerabilities in its January 2025 Patch Tuesday rollout. Among these are 10 Critical vulnerabilities and eight zero-days affecting the Windows Hyper-V ... Read more
-
Dark Reading
Mirai Variant ‘Aquabot’ Exploits Mitel Device Flaws
Source: Kirill Ivanov via Alamy Stock PhotoYet another Mirai botnet variant is making the rounds, this time offering distributed denial-of-service (DDoS) as-a-service by exploiting flaws in Mitel SIP ... Read more
-
security.nl
'Zyxel CPE-apparaten bevatten actief misbruikt beveiligingslek'
Vijftienhonderd Zyxel CPE (customer-provided equipment) apparaten die vanaf het internet toegankelijk bevatten een actief misbruikt beveiligingslek en een update is niet beschikbaar. Dat laat security ... Read more
-
Help Net Security
Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891)
CVE-2024-40891, a command injection vulnerability in Zyxel CPE Series telecommunications devices that has yet to be fixed by the manufacturer, is being targeted by attackers, cybersecurity company Gre ... Read more
-
CrowdStrike.com
January 2025 Patch Tuesday: 10 Critical Vulnerabilities and Eight Zero-Days Among 159 CVEs
Microsoft has released security updates for 159 vulnerabilities in its January 2025 Patch Tuesday rollout. Among these are 10 Critical vulnerabilities and eight zero-days affecting the Windows Hyper-V ... Read more
-
The Register
Why is my Mitel phone DDoSing strangers? Oh, it was roped into a new Mirai botnet
A new variant of the Mirai-based malware Aquabot is actively exploiting a vulnerability in Mitel phones to build a remote-controlled botnet, according to Akamai's Security Intelligence and Response Te ... Read more
-
cybereason.com
RSAC 2025 - Key Trends from 100s of ‘Hackers & Threats’ Talk Submissions
Just before the end of 2024, the Hackers & Threats Program Committee met to review hundreds of submissions for the track for RSAC 2025 Conference. I want to first thank all of those who submitted thei ... Read more