Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Register
CISA spots spawn of Spawn malware targeting Ivanti flaw
Owners of Ivanti’s Connect Secure, Policy Secure, and ZTA Gateway products have a new strain of malware to fend off, according to the US Cybersecurity and Infrastructure Security Agency, aka CISA. If ... Read more
-
Daily CyberSecurity
Earth Alux APT Group: Unveiling Its Espionage Toolkit
VARGEIT and controller interaction | Image: Trend MicroResearchers at Trend Micro detail a highly sophisticated cyber-espionage group actively targeting the Asia-Pacific and Latin American regions. Kn ... Read more
-
Daily CyberSecurity
CVE-2025-1449 (CVSS 9.1): Vulnerability in Verve Asset Manager Allows Admin Shell Access
Rockwell Automation has released a security advisory addressing a vulnerability in Verve Asset Manager. The advisory details a flaw that could allow a threat actor with administrative access to execut ... Read more
-
Daily CyberSecurity
KNIME Business Hub Hit by Critical Bugs, Including Hard-Coded Password and XSS Flaws
A recent security advisory from KNIME details several vulnerabilities affecting the KNIME Business Hub, a customer-managed KNIME Hub instance that provides access to Hub resources and allows for custo ... Read more
-
Daily CyberSecurity
Bulletproof Hosting Fuels Russia-Linked Intrusion Sets’ Global Cyber Campaign
Layout of UAC-0006’s spam infrastructure by the end of 2023 and early 2024 | Image: IntrinsecA recent report by Intrinsec has uncovered the activities of Russia-aligned intrusion sets, UAC-0050 and UA ... Read more
-
The Register
Oracle Cloud security SNAFU latest: IT giant accused of pedantry as evidence scrubbed
Two Oracle data security breaches have been reported in the past week, and the database goliath not only remains reluctant to acknowledge the disasters publicly – it may be scrubbing the web of eviden ... Read more
-
Dark Reading
Oracle Cloud Users Urged to Take Action
Source: sdx15 via ShutterstockWith Oracle not budging from its denial of a breach that a growing number of security experts believe occurred, some are urging the company's cloud customers to take imme ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more
-
BleepingComputer
Microsoft uses AI to find flaws in GRUB2, U-Boot, Barebox bootloaders
Microsoft used its AI-powered Security Copilot to discover 20 previously unknown vulnerabilities in the GRUB2, U-Boot, and Barebox open-source bootloaders. GRUB2 (GRand Unified Bootloader) is the defa ... Read more
-
The Cyber Express
CISA Details New Malware Used in Ivanti Attacks
The U.S. Cybersecurity and Information Security Agency (CISA) has issued an advisory detailing a new malware variant detected in attacks on an Ivanti vulnerability. The CISA advisory says the agency r ... Read more