CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Secure Your Repos: go-git Patches Critical Vulnerability – CVE-2025-21613 (CVSS 9.8)
The popular Go library for Git interaction, go-git, has recently released version 5.13 to address two critical security vulnerabilities that could leave your repositories exposed. Developers are stron ... Read more
-
TheCyberThrone
CISA KEV UPDATE Part I – January 2025
The US CISA has added 3 vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog based on the evidence of active exploitation.CVE-2024-41713: Mitel MiCollab Path Traversal VulnerabilityDe ... Read more
-
BleepingComputer
New Mirai botnet targets industrial routers with zero-day exploits
A relatively new Mirai-based botnet has been growing in sophistication and is now leveraging zero-day exploits for security flaws in industrial routers and smart home devices. Exploitation of previous ... Read more
-
BleepingComputer
BIOS flaws expose iSeq DNA sequencers to bootkit attacks
BIOS/UEFI vulnerabilities in the iSeq 100 DNA sequencer from U.S. biotechnology company Illumina could let attackers disable devices used for detecting illnesses and developing vaccines. The Illumina ... Read more
-
BleepingComputer
CISA warns of critical Oracle, Mitel flaws exploited in attacks
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. The cybersec ... Read more
-
The Hacker News
Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
Firmware Security / Malware Cybersecurity researchers have uncovered firmware security vulnerabilities in the Illumina iSeq 100 DNA sequencing instrument that, if successfully exploited, could permit ... Read more
-
TheCyberThrone
Redis was affected by CVE-2024-51741 and CVE-2024-46981
CVE-2024-51741Description:This vulnerability affects Redis, an open-source in-memory data structure store used as a database, cache, and message broker. The issue arises when an authenticated user wit ... Read more
-
security.nl
SonicWall waarschuwt voor actief misbruikt lek in SSLVPN-functie firewalls
SonicWall waarschuwt organisaties voor een actief aangevallen kwetsbaarheid in de SSLVPN-functionaliteit van de firewalls die het biedt. Een beveiligingsupdate om het probleem te verhelpen zou vandaag ... Read more
-
security.nl
SonicWall verhelpt authentication bypass in SSLVPN-functie firewalls
dinsdag 7 januari 2025, 13:25 door Redactie, 3 reactiesLaatst bijgewerkt: Vandaag, 08:35 SonicWall heeft een authentication bypass in de SSLVPN-functionaliteit van SonicOS verholpen, het besturingssys ... Read more
-
Help Net Security
CISA says Treasury was the only US agency breached via BeyondTrust
The US Cybersecurity and Infrastructure Security Agency (CISA) has shared on Monday that the Treasury Department was the only US federal agency affected by the recent cybersecurity incident involving ... Read more