Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
- Cyber Security News
OpenStack Nova Vulnerability Allows Hackers Gain Unauthorized Access to Cloud Servers
A vulnerability in OpenStack’s Nova component has been identified, potentially allowing hackers to gain unauthorized access to cloud servers. This vulnerability, tracked as CVE-2024-40767, affects mul ... Read more
- Help Net Security
Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327)
Progress Software has fixed a critical vulnerability (CVE-2024-6327) in its Telerik Report Server solution and is urging users to upgrade as soon as possible. About CVE-2024-6327 (and CVE-2024-6096) T ... Read more
- The Hacker News
Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk
Software Security / Vulnerability Progress Software is urging users to update their Telerik Report Server instances following the discovery of a critical security flaw that could result in remote code ... Read more
- TheCyberThrone
Docker fixes Critical Vulnerability -CVE-2024-41110
Docker has released an urgent security advisory that has fixes for a critical vulnerability in certain versions of Docker Engine that allows attackers to bypass authorization plugins.The vulnerability ... Read more
- TheCyberThrone
SIEMENS Fixes Several Vulnerabilities in SICAM Products
Siemens has released critical security advisory for its SICAM products vulnerabilities that could lead to unauthorized access and data leaks. The affected products include the SICAM A8000 RTUs, SICAM ... Read more
- Google Cloud
APT45: North Korea’s Digital Military Machine
Written by: Taylor Long, Jeff Johnson, Alice Revelli, Fred Plan, Michael Barnhart Executive Summary APT45 is a long-running, moderately sophisticated North Korean cyber operator that has carried out e ... Read more
- objective-see.org
CVE-2015-3673: Goodbye Rootpipe...(for now?)
This Meeting Should Have Been an Email 07/15/2024 A DPRK stealer, dubbed BeaverTail, targets users via a trojanized meeting app. Let's analyze it comprehensively! continue reading »Apple Gets an 'F' f ... Read more
- objective-see.org
From the Top to the Bottom; Tracking down CVE-2017-7149
From the Top to the Bottom › tracking down the cause of CVE-2017-7149, from the UI level 11/25/2017 love these blog posts? support my tools & writing on patreon! Mahalo :) In this blog, we'll take a d ... Read more
- objective-see.org
Rootpipe Reborn (Part II)
Rootpipe Reborn (Part II) CVE-2019-8565 feedback assistant race condition, leads to root April 22, 2019 In this guest blog post, the talented @CodeColorist writes about yet another neat macOS vulnerab ... Read more
- objective-see.org
Sniffing Authentication References on macOS
Sniffing Authentication References on macOS details of a privilege-escalation vulnerability (CVE-2017-7170) by: Patrick Wardle / March 16, 2020 Our research, tools, and writing, are supported by the " ... Read more