CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
New botnet exploits vulnerabilities in NVRs, TP-Link routers
A new Mirai-based botnetis actively exploiting a remote code execution vulnerability that has not received a tracker number and appears to be unpatched in DigiEver DS-2105 Pro NVRs. The campaign start ... Read more
-
BleepingComputer
Clop ransomware threatens 66 Cleo attack victims with data leak
The Clop ransomware gang started to extort victims of its Cleo data theft attacks and announced on its dark web portal that 66 companies have 48 hours to respond to the demands. The cybercriminals ann ... Read more
-
BleepingComputer
Clop ransomware is now extorting 66 Cleo data-theft victims
The Clop ransomware gang started to extort victims of its Cleo data theft attacks and announced on its dark web portal that 66 companies have 48 hours to respond to the demands. The cybercriminals ann ... Read more
-
The Cyber Express
Adobe ColdFusion Vulnerability: Critical Bug (CVE-2024-53961) with PoC Exploit Code Discovered
Adobe has issued an urgent security advisory to address a critical vulnerability in Adobe ColdFusion, affecting versions 2023 and 2021. This vulnerability, tracked as CVE-2024-53961, is linked to a pa ... Read more
-
The Hacker News
CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation
Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the K ... Read more
-
Cybersecurity News
WordPress.org Free Services Suspended: What It Means for Users and Developers
Matt Mullenweg, WordPress co-founder and Automattic CEO, has pulled the plug on several key services for free WordPress.org users. New account registrations, plugin/theme submissions, and even photo u ... Read more
-
security.nl
Adobe komt met noodpatch voor kritieke ColdFusion-kwetsbaarheid
Adobe heeft een noodpatch uitgebracht voor een kritieke kwetsbaarheid in ColdFusion en adviseert gebruikers en organisaties om de patch zo snel mogelijk te installeren, waarbij als voorbeeld binnen 72 ... Read more
-
TheCyberThrone
WordPress WPLMS and VibeBP Vulnerabilities
Two widely-used WordPress plugins, WPLMS and VibeBP, have recently been discovered with critical vulnerabilities. These vulnerabilities, if left unaddressed, could potentially expose websites to sever ... Read more
-
The Cyber Express
CISA Flags CVE-2021-44207 in Exploited Vulnerabilities Catalog: High Impact Alert
The Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of a new vulnerability, CVE-2021-44207, to its Known Exploited Vulnerabilities (KEV) Catalog. This action follows ... Read more
-
The Hacker News
Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks
The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server software that could result in remote code execution (RCE) under certain c ... Read more