Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability
CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables atta ... Read more
-
Kaspersky
EAGERBEE, with updated and novel components, targets the Middle East
Introduction In our recent investigation into the EAGERBEE backdoor, we found that it was being deployed at ISPs and governmental entities in the Middle East. Our analysis uncovered new components use ... Read more
-
Cybersecurity News
CVE-2024-43452: PoC Exploit Released for Windows Elevation of Privilege Bug
Security researchers published the technical details and a proof-of-concept (PoC) exploit code for CVE-2024-43452 (CVSS 7.5), a Windows Registry Elevation of Privilege vulnerability. Reported by Mateu ... Read more
-
TheCyberThrone
CVE-2024-43405 Vulnerability in Nuclei
CVE-2024-43405 is a high severity vulnerability identified in Nuclei, a widely used open-source vulnerability scanner. This vulnerability, affecting versions 3.0.0 to 3.3.1, allows attackers to bypass ... Read more
-
Cybersecurity News
CVE-2024-9138 and CVE-2024-9140 (CVSS 9.8): Moxa Calls for Immediate Security Action
Moxa, a leading provider of industrial networking and communication solutions, has issued a security advisory warning of two critical vulnerabilities affecting their cellular routers, secure routers, ... Read more
-
Cybersecurity News
GoCD Patches Critical Vulnerability Allowing User Privilege Escalation
Open-source CI/CD platform GoCD has released an urgent security update to address a critical vulnerability that could allow malicious authenticated users to escalate their privileges to administrator ... Read more
-
Cybersecurity News
Hackers Exploit Social Security Administration Branding to Deliver ConnectWise RAT
In a concerning escalation of phishing tactics, hackers are spoofing the United States Social Security Administration (SSA) to distribute the ConnectWise Remote Access Tool (RAT), a campaign uncovered ... Read more
-
Cybersecurity News
Cybersecurity Alert: FireScam—The Android Malware Disguised as Telegram Premium
In an era where mobile applications dominate daily life, cybersecurity threats have reached unprecedented sophistication. A recent report by CYFIRMA unveils FireScam, a dangerous Android malware masqu ... Read more
-
The Register
Telemetry data from 800K VW Group EVs exposed online
Infosec in Brief Welcome to 2025: hopefully you enjoyed a pleasant holiday season and returned to the security operations center without incident - unlike Volkswagen, which last week admitted it expos ... Read more
-
TheCyberThrone
TheCyberThrone Security Weekly Review – January 04, 2025
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, January 04, 2025.CVE-2024-56512 impacts A ... Read more