Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Critical Progress WhatsUp RCE flaw now under active exploitation
Threat actors are actively attempting to exploit a recently fixed Progress WhatsUp Gold remote code execution vulnerability on exposed servers for initial access to corporate networks. The vulnerabil ... Read more
-
Cybersecurity News
CVE-2024-43044: Critical Jenkins Vulnerability Exposes Servers to RCE Attacks
Today, Jenkins, the popular open-source automation server, has issued an urgent advisory detailing two vulnerabilities, one with a critical severity rating. These vulnerabilities, identified as CVE-20 ... Read more
-
The Hacker News
Roundcube Webmail Flaws Allow Hackers to Steal Emails and Passwords
Email Security / Vulnerability Cybersecurity researchers have disclosed details of security flaws in the Roundcube webmail software that could be exploited to execute malicious JavaScript in a victim' ... Read more
-
Cyber Security News
1Password Vulnerability Let Attackers Exfiltrate Vault Items
A critical vulnerability, designated as CVE-2024-42219, has been identified in 1Password 8 for Mac. This flaw allows malicious actors to exfiltrate vault items by bypassing the app’s platform security ... Read more
-
Cyber Security News
Apache Cloudstack Vulnerability Exposes API & Secret Keys to Admin Accounts
The Apache CloudStack project has announced the release of long-term support (LTS) security updates, versions 4.18.2.3 and 4.19.1.1, which address two critical vulnerabilities, CVE-2024-42062 and CVE- ... Read more
-
cert.pl
Vulnerabilities in EZD RP software
CVE ID CVE-2024-7265 Publication date 07 August 2024 Vendor Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy Product EZD RP Vulnerable versions From 15 to 15.84, from 16 before 16.1 ... Read more
-
security.nl
Google dicht weer kritiek Chrome-lek dat aanvaller code laat uitvoeren
Google heeft een week na de vorige update weer een kritieke kwetsbaarheid in Chrome verholpen waardoor een aanvaller willekeurige code op systemen kan uitvoeren en die in de ergste gevallen kan overne ... Read more
-
Cybersecurity News
Data Centers Alert: AMD Addresses SEV-SNP Vulnerabilities in EPYC Processors
AMD has released a security bulletin addressing three potential vulnerabilities in its Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP) technology. Discovered by a researcher, these vu ... Read more
-
Cyber Security News
Firefox Patches Multiple High Severity Vulnerabilities
Mozilla has released Firefox 129, addressing multiple high-severity vulnerabilities. These patches are critical for enhancing the browser’s security and protecting users from potential exploits. Detai ... Read more
-
Help Net Security
Roundcube flaws allow easy email account compromise (CVE-2024-42009, CVE-2024-42008)
Two cross-site scripting vulnerabilities (CVE-2024-42009, CVE-2024-42008) affecting Roundcube could be exploited by attackers to steal users’ emails and contacts, email password, and send emails from ... Read more