CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-56145 (CVSS 9.3): Remote Code Execution Vulnerability in Craft CMS, PoC Published
Security researchers at Assetnote have disclosed a critical vulnerability (CVE-2024-56145) in Craft CMS, a widely-used PHP-based content management system. This flaw, assigned a CVSS score of 9.3, ena ... Read more
-
Cybersecurity News
DigiEver DVR Vulnerability Under Attack by Hail Cock Botnet
Akamai Security Intelligence Research Team (SIRT) has uncovered a vulnerability in DigiEver DS-2105 Pro DVRs is being actively exploited by the Hail Cock botnet, a Mirai variant enhanced with modern e ... Read more
-
Cybersecurity News
FlowerStorm Seizes Opportunity as Rockstar2FA Crumbles
Despite its popularity, the phishing-as-a-service platform Rockstar2FA suffered a partial collapse in November 2024 due to technical issues, allowing the new phishing toolkit FlowerStorm to emerge, ac ... Read more
-
Cybersecurity News
Lazarus Group’s Evolving Arsenal: New Malware and Infection Chains Unveiled
In a recent analysis by Kaspersky Labs, the infamous Lazarus Group continues to refine its strategies, blending old tactics with new malware to create advanced and stealthy attack chains. Dubbed the D ... Read more
-
TheCyberThrone
Foxit Vulnerability fixes Twin flaws in PDF Reader
Foxit Software recently released an essential security update for its Foxit PDF Reader and Foxit PDF Editor applications to address multiple critical vulnerabilities. These flaws included remote code ... Read more
-
TheCyberThrone
Most Exploited Vulnerabilities in 2024 Top 20 Analysis
In 2024, the cybersecurity landscape saw a significant number of exploited vulnerabilities, highlighting the ongoing challenges organizations face in protecting their systems and data.Some key trends ... Read more
-
Help Net Security
Week in review: MUT-1244 targets both security workers and threat actors, Kali Linux 2024.4 released
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: MUT-1244 targeting security researchers, red teamers, and threat actors A threat actor tracked as MUT- ... Read more
-
seclists.org
CyberDanube Security Research 20241219-0 | Authenticated Remote Code Execution in Ewon Flexy 205
Full Disclosure mailing list archives CyberDanube Security Research 20241219-0 | Authenticated Remote Code Execution in Ewon Flexy 205 From: Thomas Weber | CyberDanube via Fulldisclosure <fulldisclosu ... Read more
-
Cybersecurity News
CVE-2024-51466 (CVSS 9.0): Critical Vulnerability Found in IBM Cognos Analytics
IBM has disclosed two severe vulnerabilities in its Cognos Analytics platform that could compromise sensitive data and system integrity. These vulnerabilities, identified as CVE-2024-51466 and CVE-202 ... Read more
-
TheCyberThrone
Detailing Databricks Vulnerability CVE-2024-49194
A critical vulnerability has been identified that affects the Databricks JDBC Driver. This vulnerability allows for remote code execution (RCE) through a JNDI injection exploit using a malicious JDBC ... Read more