CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
CISA warns of critical Oracle, Mitel flaws exploited in attacks
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. The cybersec ... Read more
-
The Hacker News
Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
Firmware Security / Malware Cybersecurity researchers have uncovered firmware security vulnerabilities in the Illumina iSeq 100 DNA sequencing instrument that, if successfully exploited, could permit ... Read more
-
TheCyberThrone
Redis was affected by CVE-2024-51741 and CVE-2024-46981
CVE-2024-51741Description:This vulnerability affects Redis, an open-source in-memory data structure store used as a database, cache, and message broker. The issue arises when an authenticated user wit ... Read more
-
security.nl
SonicWall waarschuwt voor actief misbruikt lek in SSLVPN-functie firewalls
SonicWall waarschuwt organisaties voor een actief aangevallen kwetsbaarheid in de SSLVPN-functionaliteit van de firewalls die het biedt. Een beveiligingsupdate om het probleem te verhelpen zou vandaag ... Read more
-
security.nl
SonicWall verhelpt authentication bypass in SSLVPN-functie firewalls
dinsdag 7 januari 2025, 13:25 door Redactie, 3 reactiesLaatst bijgewerkt: Vandaag, 08:35 SonicWall heeft een authentication bypass in de SSLVPN-functionaliteit van SonicOS verholpen, het besturingssys ... Read more
-
Help Net Security
CISA says Treasury was the only US agency breached via BeyondTrust
The US Cybersecurity and Infrastructure Security Agency (CISA) has shared on Monday that the Treasury Department was the only US federal agency affected by the recent cybersecurity incident involving ... Read more
-
security.nl
Androidtelefoons kwetsbaar voor aanval via malafide zendmast
dinsdag 7 januari 2025, 12:23 door Redactie, 4 reactiesLaatst bijgewerkt: Vandaag, 14:27 Androidtelefoons bevatten meerdere kritieke kwetsbaarheden die remote code execution op de toestellen mogelijk ... Read more
-
security.nl
Androidtelefoons met MediaTek-chip kwetsbaar voor aanval via malafide zendmast
dinsdag 7 januari 2025, 12:23 door Redactie, 4 reactiesLaatst bijgewerkt: Vandaag, 14:27 Androidtelefoons bevatten meerdere kritieke kwetsbaarheden die remote code execution op de toestellen mogelijk ... Read more
-
The Hacker News
New EAGERBEE Variant Targets ISPs and Governments with Advanced Backdoor Capabilities
Internet service providers (ISPs) and governmental entities in the Middle East have been targeted using an updated variant of the EAGERBEE malware framework. The new variant of EAGERBEE (aka Thumtais) ... Read more
-
tripwire.com
The Overlooked Risks of Open-Source Software in Industrial Security
Open-source software (OSS) has become an indispensable component in many industrial environments. Just last year, 95% of companies said they increased or maintained their use of OSS. According to the ... Read more