CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]
Every tap, click, and swipe we make online shapes our digital lives, but it also opens doors—some we never meant to unlock. Extensions we trust, assistants we rely on, and even the codes we scan are t ... Read more
-
InfoSec Write-ups
Haunted — Blue Team Labs Online Write-up
HauntedOne of the company’s websites has been defaced, raising alarms. Collaborate with other analysts to uncover the identity of the adversary and assess the situation.Category: Threat IntelligenceTo ... Read more
-
TheCyberThrone
CVE-2024-10957: UpdraftPlus WordPress Plugin Vulnerability
CVE-2024-10957 is a high-severity vulnerability affecting the UpdraftPlus: WP Backup & Migration Plugin for WordPress. This vulnerability, present in versions up to and including 1.24.11, enables atta ... Read more
-
Kaspersky
EAGERBEE, with updated and novel components, targets the Middle East
Introduction In our recent investigation into the EAGERBEE backdoor, we found that it was being deployed at ISPs and governmental entities in the Middle East. Our analysis uncovered new components use ... Read more
-
Cybersecurity News
CVE-2024-43452: PoC Exploit Released for Windows Elevation of Privilege Bug
Security researchers published the technical details and a proof-of-concept (PoC) exploit code for CVE-2024-43452 (CVSS 7.5), a Windows Registry Elevation of Privilege vulnerability. Reported by Mateu ... Read more
-
TheCyberThrone
CVE-2024-43405 Vulnerability in Nuclei
CVE-2024-43405 is a high severity vulnerability identified in Nuclei, a widely used open-source vulnerability scanner. This vulnerability, affecting versions 3.0.0 to 3.3.1, allows attackers to bypass ... Read more
-
Cybersecurity News
CVE-2024-9138 and CVE-2024-9140 (CVSS 9.8): Moxa Calls for Immediate Security Action
Moxa, a leading provider of industrial networking and communication solutions, has issued a security advisory warning of two critical vulnerabilities affecting their cellular routers, secure routers, ... Read more
-
Cybersecurity News
GoCD Patches Critical Vulnerability Allowing User Privilege Escalation
Open-source CI/CD platform GoCD has released an urgent security update to address a critical vulnerability that could allow malicious authenticated users to escalate their privileges to administrator ... Read more
-
Cybersecurity News
Hackers Exploit Social Security Administration Branding to Deliver ConnectWise RAT
In a concerning escalation of phishing tactics, hackers are spoofing the United States Social Security Administration (SSA) to distribute the ConnectWise Remote Access Tool (RAT), a campaign uncovered ... Read more
-
Cybersecurity News
Cybersecurity Alert: FireScam—The Android Malware Disguised as Telegram Premium
In an era where mobile applications dominate daily life, cybersecurity threats have reached unprecedented sophistication. A recent report by CYFIRMA unveils FireScam, a dangerous Android malware masqu ... Read more