Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Register
Security pros baited with fake Windows LDAP exploit traps
Security researchers are once again being lured into traps by attackers, this time with fake exploits of serious Microsoft security flaws. Trend Micro spotted what appears to be a fork of the legitima ... Read more
-
Help Net Security
Ivanti Connect Secure zero-day exploited since mid-December (CVE-2025-0282)
The zero-day attacks leveraging the Ivanti Connect Secure (ICS) vulnerability (CVE-2025-0282) made public on Wednesday were first spotted in mid-December 2024, Mandiant researchers have shared. It’s s ... Read more
-
security.nl
Mandiant: Ivanti VPN-lek sinds halverwege december misbruikt bij aanvallen
Een kwetsbaarheid in Ivanti Connect Secure die het mogelijk maakt om vpn-servers op afstand over te nemen en waarvoor gisterenavond een beveiligingsupdate verscheen is sinds halverwege december misbru ... Read more
-
InfoSec Write-ups
SOC239 — Remote Code Execution Detected in Splunk Enterprise
In this writeup, I will investigate one of the alerts on Letsdefend, “SOC239 — Remote Code Execution Detected in Splunk Enterprise”This alert is about CVE-2023–46214. The vulnerability is caused by Sp ... Read more
-
“SOC227 — Microsoft SharePoint Server Elevation of Privilege — Possible CVE-2023–29357…
In this writeup, I will investigate one of the alerts on Letsdefend, “SOC227 — Microsoft SharePoint Server Elevation of Privilege — Possible CVE-2023–29357 Exploitation”.The CVE-2023–29357 vulnerabili ... Read more
-
SOC235 — Atlassian Confluence Broken Access Control 0-Day CVE-2023-22515
In this writeup, I will investigate one of the alerts on Letsdefend, “SOC235 — Atlassian Confluence Broken Access Control 0-Day CVE-2023–22515”The CVE-2023–22515 affects certain versions of Atlassian ... Read more
-
security.nl
Lek in firewall-migratietool Palo Alto Networks geeft toegang tot wachtwoorden
Kwetsbaarheden in de firewall-migratietool van Palo Alto Networks maken het mogelijk voor aanvallers om wachtwoorden en andere gevoelige data te stelen. Vorig jaar werden drie soortgelijke kwetsbaarhe ... Read more
-
The Hacker News
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection
Vulnerability / Threat Intelligence Threat actors are attempting to take advantage of a recently disclosed security flaw impacting GFI KerioControl firewalls that, if successfully exploited, could all ... Read more
-
security.nl
Ivanti waarschuwt voor actief aangevallen lek in Connect Secure VPN
Softwarebedrijf Ivanti waarschuwt organisaties, net als een jaar geleden, voor een actief aangevallen kwetsbaarheid in Connect Secure VPN en roept op de nu beschikbaar gestelde update te installeren. ... Read more
-
The Hacker News
Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure
Ivanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning mid-December 2024. The securit ... Read more