CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Clop ransomware is now extorting 66 Cleo data-theft victims
The Clop ransomware gang started to extort victims of its Cleo data theft attacks and announced on its dark web portal that 66 companies have 48 hours to respond to the demands. The cybercriminals ann ... Read more
-
The Cyber Express
Adobe ColdFusion Vulnerability: Critical Bug (CVE-2024-53961) with PoC Exploit Code Discovered
Adobe has issued an urgent security advisory to address a critical vulnerability in Adobe ColdFusion, affecting versions 2023 and 2021. This vulnerability, tracked as CVE-2024-53961, is linked to a pa ... Read more
-
The Hacker News
CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation
Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the K ... Read more
-
Cybersecurity News
WordPress.org Free Services Suspended: What It Means for Users and Developers
Matt Mullenweg, WordPress co-founder and Automattic CEO, has pulled the plug on several key services for free WordPress.org users. New account registrations, plugin/theme submissions, and even photo u ... Read more
-
security.nl
Adobe komt met noodpatch voor kritieke ColdFusion-kwetsbaarheid
Adobe heeft een noodpatch uitgebracht voor een kritieke kwetsbaarheid in ColdFusion en adviseert gebruikers en organisaties om de patch zo snel mogelijk te installeren, waarbij als voorbeeld binnen 72 ... Read more
-
TheCyberThrone
WordPress WPLMS and VibeBP Vulnerabilities
Two widely-used WordPress plugins, WPLMS and VibeBP, have recently been discovered with critical vulnerabilities. These vulnerabilities, if left unaddressed, could potentially expose websites to sever ... Read more
-
The Cyber Express
CISA Flags CVE-2021-44207 in Exploited Vulnerabilities Catalog: High Impact Alert
The Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of a new vulnerability, CVE-2021-44207, to its Known Exploited Vulnerabilities (KEV) Catalog. This action follows ... Read more
-
The Hacker News
Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks
The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server software that could result in remote code execution (RCE) under certain c ... Read more
-
TheCyberThrone
Zeroday Vulnerabilities Prevailed in 2024 Analysis-Part II
This is the continuation of Zeroday vulnerabilities in 2024. Let’s delve deeply into the continuation of zero-day vulnerabilities of 2024, providing a comprehensive analysis.1. CVE-2023-46805: Authen ... Read more
-
Cybersecurity News
PoC Exploit Released for CVE-2024-30085: Windows Elevation of Privilege Vulnerability
Security researcher Alex Birnberg with SSD Secure Disclosure published the technical details and a proof-of-concept (PoC) exploit code for CVE-2024-30085 – a Windows Cloud Files Mini Filter Driver Ele ... Read more