Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Register
SonicWall flags critical bug likely exploited as zero-day, rolls out hotfix
SonicWall is warning customers of a critical vulnerability that was potentially already exploited as a zero-day. The bug affects SonicWall's Secure Mobile Access (SMA) line, specifically the SMA 1000 ... Read more
-
CrowdStrike.com
January 2025 Patch Tuesday: 10 Critical Vulnerabilities and Eight Zero-Days Among 159 CVEs
Microsoft has released security updates for 159 vulnerabilities in its January 2025 Patch Tuesday rollout. Among these are 10 Critical vulnerabilities and eight zero-days affecting the Windows Hyper-V ... Read more
-
BleepingComputer
SonicWall warns of SMA1000 RCE flaw exploited in zero-day attacks
SonicWall is warning about a pre-authentication deserialization vulnerability in SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC), with reports that it has bee ... Read more
-
BleepingComputer
Stealthy 'Magic Packet' malware targets Juniper VPN gateways
A malicious campaign has been specifically targeting Juniper edge devices, many acting as VPN gateways, with malware dubbed J-magic that starts a reverse shell only if it detects a “magic packet” in t ... Read more
-
The Hacker News
Palo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware Exploits
Firmware Security / Vulnerability An exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting the devices' firmware as well as misc ... Read more
-
The Register
FortiGate config leaks: Victims' email addresses published online
Thousands of email addresses included in the Belsen Group's dump of FortiGate configs last week are now available online, revealing which organizations may have been impacted by the 2022 zero-day expl ... Read more
-
TheCyberThrone
CVE-2025-0314 impacts GitLab
CVE-2025-0314 is a high-severity cross-site scripting (XSS) vulnerability identified in GitLab, a widely used platform for version control, CI/CD, and DevOps. This vulnerability enables attackers to i ... Read more
-
CrowdStrike.com
January 2025 Patch Tuesday: 10 Critical Vulnerabilities and Eight Zero-Days Among 159 CVEs
Microsoft has released security updates for 159 vulnerabilities in its January 2025 Patch Tuesday rollout. Among these are 10 Critical vulnerabilities and eight zero-days affecting the Windows Hyper-V ... Read more
-
Krypt3ia
Krypt3ia Daily Cyber Threat Intelligence (CTI) Digest
Date: 1.23.25 Top Headlines New GhostGPT AI Chatbot Facilitates Malware Creation and Phishing Summary: Cybercriminals are selling access to a new malicious generative AI chatbot called GhostGPT. The ... Read more
-
TheCyberThrone
CVE-2025-20156 impacts Cisco Meeting Management
CVE-2025-20156 is a critical vulnerability within the REST API of Cisco Meeting Management. This vulnerability allows a remote, authenticated attacker with low privileges to elevate their access right ... Read more