CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Evasive Malware Campaign Leverages CleverSoar Installer & Nidhogg Rootkit
CleverSoar Attack Flow | Image: Rapid7Rapid7 Labs has uncovered a sophisticated malware campaign employing the newly identified CleverSoar installer, a highly evasive threat targeting Chinese and Viet ... Read more
-
Cybersecurity News
Beyond FUD Links: Rockstar PaaS Kit Exploits Trusted Platforms for Phishing
The Rockstar Phishing-as-a-Service (PaaS) kit has caught the attention of cybersecurity experts for its advanced and devious tactics to bypass email defenses. In a report from Trustwave SpiderLabs, Ro ... Read more
-
Cybersecurity News
Contiki-NG IoT OS Patches Critical Vulnerabilities
Researchers have identified and addressed three critical vulnerabilities in Contiki-NG, a popular open-source operating system for Internet of Things (IoT) devices. These vulnerabilities could allow a ... Read more
-
TheCyberThrone
ProjectSend Exploited by Threat actors using CVE-2024-11680
ProjectSend, an open-source file-sharing web application, has been exploited by attackers using an improper authentication vulnerability since the start of 2024.Exploiting this vulnerability allows th ... Read more
-
0patch.com
Micropatches for "LNK Stomping" Windows Mark of the Web Security Feature Bypass (CVE-2024-38217)
September 2024 Windows Updates brought a patch for CVE-2024-38217 a.k.a. "LNK Stomping", a security bypass vulnerability allowing an attacker to prevent the "Mark of the Web" (MotW) being applied to a ... Read more
-
The Hacker News
Over Two Dozen Flaws Identified in Advantech Industrial Wi-Fi Access Points – Patch ASAP
IoT Security / Vulnerability Nearly two dozen security vulnerabilities have been disclosed in Advantech EKI industrial-grade wireless access point devices, some of which could be weaponized to bypass ... Read more
-
tripwire.com
Mimic ransomware: what you need to know
What is Mimic?Mimic is family of ransomware, first found in-the-wild in 2022. In common with many other ransomware attacks, Mimic encrypts a victim's files, and demands a ransom payment in cryptocurre ... Read more
-
tripwire.com
Mimic Ransomware: What You Need To Know
What is Mimic?Mimic is family of ransomware, first found in-the-wild in 2022. In common with many other ransomware attacks, Mimic encrypts a victim's files, and demands a ransom payment in cryptocurre ... Read more
-
security.nl
Microsoft rolt update voor spoofinglek in Exchange Server opnieuw uit
Microsoft heeft een beveiligingsupdate voor een spoofinglek in Exchange Server opnieuw uitgerold, nadat het de patch eerder wegens problemen had teruggetrokken. De kwetsbaarheid (CVE-2024-49040) laat ... Read more
-
The Cyber Express
Australia’s New Cyber Security Act: Mandatory Ransom Payment Reporting
The Australian government has passed the new Cyber Security Act, which was recently approved by Parliament. One of the most critical provisions of this new law mandates that organizations must report ... Read more