CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
InfoSec Write-ups
Reversing, Discovering, And Exploiting A TP-Link Router Vulnerability — CVE-2024–54887
OverviewRecently, I picked up an interest in reverse engineering and exploit development. After a while, picking at Hack The Box challenges can get tired, and I started looking for a more interesting ... Read more
-
Cybersecurity News
CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published
A severe security vulnerability has been discovered in several Netgear routers, allowing remote attackers to gain unauthorized access and control over the devices. The vulnerability, identified as CVE ... Read more
-
Cybersecurity News
Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled
On January 8, 2025, Ivanti disclosed an actively exploited zero-day vulnerability, tracked as CVE-2025-0282, affecting its Connect Secure appliances. This critical stack-based buffer overflow vulnerab ... Read more
-
Dark Reading
China's UNC5337 Exploits a Critical Ivanti RCE Bug, Again
Source: Lobro via Alamy Stock PhotoA Chinese threat actor is once again exploiting Ivanti remote access devices at large.If you had a nickel for every high-profile vulnerability affecting Ivanti appli ... Read more
-
Dark Reading
Threat Actors Exploit a Critical Ivanti RCE Bug, Again
Source: Lobro via Alamy Stock PhotoA Chinese threat actor is once again exploiting Ivanti remote access devices at large.If you had a nickel for every high-profile vulnerability affecting Ivanti appli ... Read more
-
security.nl
Microsoft Purview kon door kritieke kwetsbaarheid gevoelige informatie lekken
Een kritieke kwetsbaarheid in Microsoft Purview maakte het mogelijk voor aanvallers om gevoelige informatie van bedrijven en organisaties te stelen, zo laat Microsoft weten, dat het probleem inmiddels ... Read more
-
security.nl
'Nederland telt bijna zestig waarschijnlijk kwetsbare Ivanti vpn-servers'
Nederland telt bijna zestig Ivanti vpn-servers die een beveiligingslek bevatten waarvan al weken actief misbruik wordt gemaakt, zo stelt The Shadowserver Foundation op basis van een internetscan. Were ... Read more
-
The Hacker News
Google Project Zero Researcher Uncovers Zero-Click Exploit Targeting Samsung Devices
Cybersecurity researchers have detailed a now-patched security flaw impacting Monkey's Audio (APE) decoder on Samsung smartphones that could lead to code execution. The high-severity vulnerability, tr ... Read more
-
tripwire.com
Tripwire Patch Priority Index for December 2024
Tripwire's December 2024 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft and Adobe.First on the list is a notice about Windows Common Log File System Driver (CLFS). ... Read more
-
The Hacker News
CrowdStrike Warns of Phishing Scam Targeting Job Seekers with XMRig Cryptominer
Cybersecurity company CrowdStrike is alerting of a phishing campaign that exploits its own branding to distribute a cryptocurrency miner that's disguised as an employee CRM application as part of a su ... Read more