CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
malware-traffic-analysis.net
2025-01-09: CVE-2017-0199 XLS --> HTA --> VBS --> steganography --> DBatLoader/GuiLoader style malware
2025-01-09 (THURSDAY): CVE-2017-0199 XLS --> HTA --> VBS --> STEGANOGRAPHY --> DBATLOADER/GUILOADER STYLE MALWARE NOTES: Zip files are password-protected. Of note, this site has a new password scheme ... Read more
-
TheCyberThrone
CVE-2024-12847: Proof-of-Concept Exploit Code Released
OverviewCVE-2024-12847 is a critical security vulnerability affecting certain models of NETGEAR routers, notably the DGN1000 and DGN2200 v1. This vulnerability has been assigned a CVSS score of 9.8, r ... Read more
-
InfoSec Write-ups
Reversing, Discovering, And Exploiting A TP-Link Router Vulnerability — CVE-2024–54887
OverviewRecently, I picked up an interest in reverse engineering and exploit development. After a while, picking at Hack The Box challenges can get tired, and I started looking for a more interesting ... Read more
-
Cybersecurity News
CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published
A severe security vulnerability has been discovered in several Netgear routers, allowing remote attackers to gain unauthorized access and control over the devices. The vulnerability, identified as CVE ... Read more
-
Cybersecurity News
Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled
On January 8, 2025, Ivanti disclosed an actively exploited zero-day vulnerability, tracked as CVE-2025-0282, affecting its Connect Secure appliances. This critical stack-based buffer overflow vulnerab ... Read more
-
Dark Reading
China's UNC5337 Exploits a Critical Ivanti RCE Bug, Again
Source: Lobro via Alamy Stock PhotoA Chinese threat actor is once again exploiting Ivanti remote access devices at large.If you had a nickel for every high-profile vulnerability affecting Ivanti appli ... Read more
-
Dark Reading
Threat Actors Exploit a Critical Ivanti RCE Bug, Again
Source: Lobro via Alamy Stock PhotoA Chinese threat actor is once again exploiting Ivanti remote access devices at large.If you had a nickel for every high-profile vulnerability affecting Ivanti appli ... Read more
-
security.nl
Microsoft Purview kon door kritieke kwetsbaarheid gevoelige informatie lekken
Een kritieke kwetsbaarheid in Microsoft Purview maakte het mogelijk voor aanvallers om gevoelige informatie van bedrijven en organisaties te stelen, zo laat Microsoft weten, dat het probleem inmiddels ... Read more
-
security.nl
'Nederland telt bijna zestig waarschijnlijk kwetsbare Ivanti vpn-servers'
Nederland telt bijna zestig Ivanti vpn-servers die een beveiligingslek bevatten waarvan al weken actief misbruik wordt gemaakt, zo stelt The Shadowserver Foundation op basis van een internetscan. Were ... Read more
-
The Hacker News
Google Project Zero Researcher Uncovers Zero-Click Exploit Targeting Samsung Devices
Cybersecurity researchers have detailed a now-patched security flaw impacting Monkey's Audio (APE) decoder on Samsung smartphones that could lead to code execution. The high-severity vulnerability, tr ... Read more