Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
One Identity Safeguard for Privileged Sessions Vulnerable to Authentication Bypass – CVE-2024-40595
A newly disclosed vulnerability in One Identity Safeguard for Privileged Sessions (SPS) could allow attackers to bypass authentication and gain unauthorized access to privileged sessions. The vulnerab ... Read more
-
Cybersecurity News
AWS CDK Vulnerability: Missing S3 Bucket Could Lead to Account Takeover
Security researchers Ofek Itach and Yakir Kadkoda from Aqua Security’s Team Nautilus uncovered a critical vulnerability in the AWS Cloud Development Kit (CDK) that could lead to a full account takeove ... Read more
-
TheCyberThrone
CISA adds Cisco and RoundCube Webmail bugs to its KEV Catalog
The US CISA has added Cisco ASA and FTD flaw, RoundCube Webmail flaw to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation.CVE-2024-20481 With a CVSS score of 5.8 ... Read more
-
Cybersecurity News
NVIDIA Patches Multi Vulnerabilities in Windows and Linux GPU Drivers
NVIDIA has issued a security bulletin addressing multiple vulnerabilities in its GPU Display Driver for both Windows and Linux. These vulnerabilities, if exploited, could allow attackers to execute ma ... Read more
-
Dark Reading
Critical Bug Exploited in Fortinet's Management Console
Source: Thomas Kyhn via Alamy Stock PhotoAn unknown threat actor has compromised Fortinet devices en masse across various industries, leaving no particular indication of what they plan to do next.The ... Read more
-
The Register
Emergency patch: Cisco fixes bug under exploit in brute-force attacks
Cisco has patched an already exploited security hole in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that miscreants have been brute-forcing in attempted denial of ... Read more
-
BleepingComputer
Cisco fixes VPN DoS flaw discovered in password spray attacks
Cisco fixed a denial of service flaw in its Cisco ASA and Firepower Threat Defense (FTD) software, which was discovered during large-scale brute force attacks against Cisco VPN devices in April. The f ... Read more
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
Lazarus Group Exploits Chrome 0-Day for Crypto with Fake NFT Game
North Korean hackers from Lazarus Group exploited a zero-day vulnerability in Google Chrome to target cryptocurrency investors with a deceptive and fake NFT game. The attackers use social engineering ... Read more
-
Dark Reading
Cisco ASA, FTD Software Under Active VPN Exploitation
Source: Palamarchuk via ShutterstockCisco has rushed a patch for a brute-force denial-of-service (DoS) vulnerability in its VPN that's being actively exploited in the wild.The medium-severity bug (CVE ... Read more
-
The Hacker News
Cisco Issues Urgent Fix for ASA and FTD Software Vulnerability Under Active Attack
Vulnerability / Network Security Cisco on Wednesday said it has released updates to address an actively exploited security flaw in its Adaptive Security Appliance (ASA) that could lead to a denial-of- ... Read more