Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
GoCD Patches Critical Vulnerability Allowing User Privilege Escalation
Open-source CI/CD platform GoCD has released an urgent security update to address a critical vulnerability that could allow malicious authenticated users to escalate their privileges to administrator ... Read more
-
Cybersecurity News
Hackers Exploit Social Security Administration Branding to Deliver ConnectWise RAT
In a concerning escalation of phishing tactics, hackers are spoofing the United States Social Security Administration (SSA) to distribute the ConnectWise Remote Access Tool (RAT), a campaign uncovered ... Read more
-
Cybersecurity News
Cybersecurity Alert: FireScam—The Android Malware Disguised as Telegram Premium
In an era where mobile applications dominate daily life, cybersecurity threats have reached unprecedented sophistication. A recent report by CYFIRMA unveils FireScam, a dangerous Android malware masqu ... Read more
-
The Register
Telemetry data from 800K VW Group EVs exposed online
Infosec in Brief Welcome to 2025: hopefully you enjoyed a pleasant holiday season and returned to the security operations center without incident - unlike Volkswagen, which last week admitted it expos ... Read more
-
TheCyberThrone
TheCyberThrone Security Weekly Review – January 04, 2025
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, January 04, 2025.CVE-2024-56512 impacts A ... Read more
-
Cybersecurity News
CVE-2024-10957 Exposes Over 3 Million WordPress Sites to Unauthenticated PHP Object Injection Exploits
A newly discovered vulnerability in the UpdraftPlus Backup & Migration Plugin, used by over 3 million WordPress websites globally, has raised significant security concerns. Identified as CVE-2024-1095 ... Read more
-
BleepingComputer
Nuclei flaw lets malicious templates bypass signature verification
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute o ... Read more
-
BleepingComputer
Nuclei flaw bypasses template signature checks to execute commands
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute o ... Read more
-
The Hacker News
Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution
Vulnerability / Software Security A high-severity security flaw has been disclosed in ProjectDiscovery's Nuclei, a widely-used open-source vulnerability scanner that, if successfully exploited, could ... Read more
-
TheCyberThrone
CVE-2024-11944: TrueNAS CORE has Severe Directory Traversal Flaw
CVE-2024-11944 is a vulnerability identified in iXsystems TrueNAS CORE. This vulnerability is classified as a Directory Traversal and Remote Code Execution (RCE) flaw. The exploitation of this vulnera ... Read more