CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-20154: Critical RCE Flaw in MediaTek Chipsets Impacts Millions
MediaTek has released its January 2025 Product Security Bulletin, addressing a range of security vulnerabilities affecting its various chipsets. The bulletin details flaws found in products ranging fr ... Read more
-
Cybersecurity News
Thousands of SonicWall Devices Remain Vulnerable to CVE-2024-40766
In September 2024, a critical vulnerability in SonicWall NSA devices, tracked as CVE-2024-40766, was disclosed. Since then, threat actors Akira and Fog have reportedly exploited this flaw to infiltrat ... Read more
-
Cybersecurity News
Exploiting Misconfigurations in Argo Workflows for Kubernetes Cluster Takeover
Argo Workflows, a widely-used open-source tool for orchestrating workflows in Kubernetes, has become a valuable asset for cloud-native automation. However, recent findings by Yali Mintus, a Cloud Secu ... Read more
-
Cybersecurity News
CVE-2024-8474: OpenVPN Connect Vulnerability Leaks Private Keys
Popular VPN client app, OpenVPN Connect, patched a critical security flaw that could have exposed users’ private keys and decrypted their VPN traffic.A recently disclosured vulnerability (CVE-2024-847 ... Read more
-
Cybersecurity News
Vulnerability Overload: 40,000+ CVEs in 2024
Security researcher Jerry Gamblin has released his annual CVE data review. 2024 saw an unprecedented surge in published Common Vulnerabilities and Exposures (CVEs), reaching a record high of 40,009. T ... Read more
-
Cybersecurity News
Windows 11’s TPM 2.0: Free Software Foundation Fights Forced Upgrades and E-Waste
The Free Software Foundation (FSF) is fresh off a successful International Day Against DRM (IDAD), held on December 20th, 2024. This year’s focus was on Microsoft’s controversial requirement of a hard ... Read more
-
BleepingComputer
Vulnerable Moxa devices expose industrial networks to attacks
Industrial networking and communications provider Moxa is warning of a high-severity and a critical vulnerability that impact various models of its cellular routers, secure routers, and network securi ... Read more
-
BleepingComputer
Eagerbee backdoor deployed against Middle Eastern govt orgs, ISPs
New variants of the Eagerbee malware framework are being deployed against government organizations and internet service providers (ISPs) in the Middle East. Previously, the malware was seen in attacks ... Read more
-
The Register
MediaTek rings in the new year with a parade of chipset vulns
MediaTek kicked off the first full working week of the new year by disclosing a bevy of security vulnerabilities, including a critical remote code execution bug affecting 51 chipsets. The fabless semi ... Read more
-
The Cyber Express
Top Cybersecurity Certifications to Boost Your Career in 2025
Cybersecurity professionals are the frontline warriors combating hackers, hacktivists, and ransomware groups. To fight with these cyber criminals, the world needs cybersecurity expertise who can acces ... Read more