Cyber Newsroom Feed

The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.

  • tripwire.com
VERT Threat Alert: December 2024 Patch Tuesday Analysis

Today’s VERT Alert addresses Microsoft’s December 2024 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1136 as soon as coverage is completed.I ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • BleepingComputer
WPForms bug allows Stripe refunds on millions of WordPress sites

A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions. Tracked under CVE-2024-112 ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • InfoSec Write-ups
5 Ways I Got RCE’s In the Wild

For offensive security professionals, finding RCE vulnerabilities is usually a crown jewel for many black-box and white-box projects. These kind of vulnerabilities reside in many different ways, but t ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • BleepingComputer
Ivanti warns of maximum severity CSA auth bypass vulnerability

Today, Ivanti warned customers about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. The security flaw (tracked as CVE-2024-11639 and reporte ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • Zero Day Initiative
The December 2024 Security Update Review

We have made it to the end of the year and the final Patch Tuesday of 2024. As expected, Microsoft and Adobe have released what (hopefully) will be their last patches of the year. Take a break from yo ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • BleepingComputer
Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws

Today is Microsoft's December 2024 Patch Tuesday, which includes security updates for 71 flaws, including one actively exploited zero-day vulnerability.This Patch Tuesday fixed sixteen critical vulner ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
Dell Urges Immediate Update to Fix Critical Power Manager Vulnerability

SUMMARY: Critical Vulnerability Alert: Dell Power Manager versions before 3.17 have a high-severity access control flaw (CVE-2024-49600) allowing attackers to gain elevated privileges. Exploitation Ri ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • Ars Technica
AMD’s trusted execution environment blown wide open by new BadRAM attack

Attack bypasses AMD protection promising security, even when a server is compromised. One of the oldest maxims in hacking is that once an attacker has physical access to a device, it’s game over for i ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • BleepingComputer
US sanctions Chinese firm for hacking firewalls in ransomware attacks

The U.S. Treasury Department has sanctioned Chinese cybersecurity company Sichuan Silence and one of its employees for their involvement in a series of Ragnarok ransomware attacks targeting U.S. criti ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)
  • The Register
AMD secure VM tech undone by DRAM meddling

Researchers have found that the security mechanism AMD uses to protect virtual machine memory can be bypassed with $10 of hardware – and perhaps not even that. AMD Secure Encrypted Virtualization (SEV ... Read more

Published Date: Dec 10, 2024 (1 week, 5 days ago)

Filters

Showing 10 of 2628 Results
© cvefeed.io
Latest DB Update: Dec. 23, 2024 6:03