Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
- seclists.org
Re: Improper Authentication (CWE-287) CVE-2024-33897
Full Disclosure mailing list archives From: Jeffrey Walton <noloader () gmail com> Date: Sun, 18 Aug 2024 03:10:41 -0400 On Sun, Aug 18, 2024 at 2:39 AM Moritz Abrell via Fulldisclosure <fulldisclosur ... Read more
- Dark Reading
Google Chrome Update Fixes Flaw Exploited in the Wild
Source: imageBROKER.com GmbH & Co. KG via Alamy Stock PhotoNew security fixes are being rolled out to address a high-severity vulnerability found in Google's Chrome browser.The flaw, tracked as CVE-20 ... Read more
- The Hacker News
Hardcoded Credential Vulnerability Found in SolarWinds Web Help Desk
Vulnerability / Network Security SolarWinds has issued patches to address a new security flaw in its Web Help Desk (WHD) software that could allow remote unauthenticated users to gain unauthorized acc ... Read more
- BleepingComputer
Microsoft confirms August updates break Linux boot in dual-boot systems
Microsoft has confirmed the August 2024 Windows security updates are causing Linux booting issues on dual-boot systems with Secure Boot enabled. The issue is caused by a Secure Boot Advanced Targeting ... Read more
- The Hacker News
Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control
Network Security / Zero-Day Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of ... Read more
- TheCyberThrone
CISA adds multiple vulnerabilities to its KEV catalog
The U.S. CISA has added 4 vulnerabilities to it’d Known Exploited Vulnerabilities Catalog (KEV) belongs to Dahua, Microsoft, and Linux products based on the mass exploitationCVE-2022-0185Linux Kernel ... Read more
- security.nl
SolarWinds-software kwetsbaar door aanwezigheid hardcoded credential
De helpdesksoftware van SolarWinds is kwetsbaar door de aanwezigheid van een hardcoded credential, waardoor een ongeauthenticeerde aanvaller toegang tot het systeem kan krijgen en data kan aanpassen. ... Read more
- BleepingComputer
SolarWinds fixes hardcoded credentials flaw in Web Help Desk
SolarWinds has released a hotfix for a critical Web Help Desk vulnerability that allows attackers to log into unpatched systems using hardcoded credentials. Web Help Desk (WHD) is an IT help desk soft ... Read more
- Dark Reading
Why End of Life for Applications Is the Beginning of Life for Hackers
Source: Artur Szczybylo via Alamy Stock PhotoCOMMENTARYWe all get older. In IT, we face problems around aging software and keeping up with patches and updates. But there is another set of dates we sho ... Read more
- security.nl
VS meldt actief misbruik van kwetsbaarheden in Dahua ip-camera's
Aanvallers maken actief misbruik van twee kwetsbaarheden in ip-camera's van fabrikant Dahua, waardoor een ongeauthenticeerde aanvaller op afstand toegang tot de apparaten kan krijgen, zo waarschuwt he ... Read more