Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cyber Security News
CISA Warns of Cisco Smart Licensing Utility Credential Vulnerability Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Cisco vulnerability to its Known Exploited Vulnerabilities (KEV) catalog following confirmation of active exploitation ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more
-
Cyber Security News
Hackers Scanning From 24,000 IPs to Gain Access to Palo Alto Networks GlobalProtect Portals
Researchers have detected an alarming surge in malicious scanning activity targeting Palo Alto Networks’ GlobalProtect VPN portals. Over a 30-day period, nearly 24,000 unique IP addresses have attempt ... Read more
-
InfoSec Write-ups
How I Accidentally Became the Sherlock Holmes of RCE! and made $$$
Free Link🎈Hi there!🙌Created by CopilotSome people wake up and choose coffee, others choose chaos. I apparently chose both. One fine morning, instead of scrolling endlessly through memes, I decided to ... Read more
-
Daily CyberSecurity
CVE-2025-27095: Token Theft Flaw in JumpServer Exposes Kubernetes Clusters to Unauthorized Access
A new vulnerability in JumpServer (CVE-2025-27095) has been disclosed, exposing Kubernetes clusters to potential compromise through token leakage. The issue affects multiple versions of JumpServer, an ... Read more
-
Daily CyberSecurity
Apple Backports Fixes for Three Actively Exploited Zero-Days Targeting Older Devices
Apple has released backported security patches for older versions of iOS, iPadOS, and macOS, addressing three zero-day vulnerabilities that have been exploited in targeted attacks. The flaws, original ... Read more
-
Daily CyberSecurity
CISA Warns of Active Exploitation of Cisco Smart Licensing Utility Flaw
In a critical update to its Known Exploited Vulnerabilities (KEV) Catalog, the Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2024-20439 (CVSS 9.8), a high-severity static crede ... Read more
-
The Register
CISA spots spawn of Spawn malware targeting Ivanti flaw
Owners of Ivanti’s Connect Secure, Policy Secure, and ZTA Gateway products have a new strain of malware to fend off, according to the US Cybersecurity and Infrastructure Security Agency, aka CISA. If ... Read more
-
Daily CyberSecurity
Earth Alux APT Group: Unveiling Its Espionage Toolkit
VARGEIT and controller interaction | Image: Trend MicroResearchers at Trend Micro detail a highly sophisticated cyber-espionage group actively targeting the Asia-Pacific and Latin American regions. Kn ... Read more
-
Daily CyberSecurity
CVE-2025-1449 (CVSS 9.1): Vulnerability in Verve Asset Manager Allows Admin Shell Access
Rockwell Automation has released a security advisory addressing a vulnerability in Verve Asset Manager. The advisory details a flaw that could allow a threat actor with administrative access to execut ... Read more