CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
security.nl
Malafide vpn-server kan via SonicWall en Palo Alto-lekken malware installeren
Twee kwetsbaarheden in de vpn-software van SonicWall en Palo Alto Networks maken het mogelijk voor aanvallers om via een malafide vpn-server bij gebruikers malware te installeren als die verbinding me ... Read more
-
Cybersecurity News
CVE-2024-11680 (CVSS 9.8): Critical ProjectSend Vulnerability Actively Exploited, PoC Published
A critical vulnerability in the open-source file-sharing web application ProjectSend, identified as CVE-2024-11680, is being actively exploited in the wild, according to a report by VulnCheck. Despite ... Read more
-
TheCyberThrone
VMware fixes multiple vulnerabilities in Aria Product
VMware has released patches to address multiple vulnerabilities affecting its Aria Operations product.The first vulnerability identified as CVE-2024-38830 with a CVSS score of 7.8 , could allow a mali ... Read more
-
Darktrace
FortiClient EMS exploited: Inside the attack chain and post-exploitation tactics
Soon after CVE-2023-48788 was publicly disclosed in late March 2024, Darktrace began to see compromises in FortiClient EMS devices on customer networks. Read on to find out more about what our Threat ... Read more
-
security.nl
Canadees laboratorium lekte data 8,6 miljoen mensen via oude Telerik-lekken
Het Canadese testlaboratorium LifeLabs heeft in 2019 de persoonlijke gegevens van 8,6 miljoen mensen gelekt omdat het had nagelaten beveiligingsupdates voor op dat moment twee jaar oude kwetsbaarheden ... Read more
-
The Cyber Express
AI Red Teaming in Focus: Why CISA Advocates a Secure by Design Approach
Artificial Intelligence (AI) has become a critical enabler across sectors, reshaping industries from healthcare to transportation. However, with its transformative potential comes a spectrum of safety ... Read more
-
Cybersecurity News
CVE-2024-0130: NVIDIA Patches High-Severity Vulnerability in UFM Products
NVIDIA has recently released a firmware update to address a high-severity vulnerability affecting its UFM Enterprise, UFM Appliance, and UFM CyberAI products. The vulnerability, identified as CVE-2024 ... Read more
-
Cybersecurity News
RomCom Exploits Zero-Days in Firefox (CVE-2024-9680) & Windows (CVE-2024-49039) with No User Interaction
Exploit chain to compromise the victim | Image: ESETIn a recent cybersecurity report, ESET researchers have unveiled a coordinated attack by the Russia-aligned threat actor RomCom, exploiting zero-day ... Read more
-
Cybersecurity News
macOS Vulnerability (CVE-2023-32428) Grants Root Access, PoC Published
Image: GergelySecurity researcher Gergely Kalman has detailed a high-severity vulnerability in Apple’s MallocStackLogging framework that could allow attackers to gain local privilege escalation (LPE) ... Read more
-
TheCyberThrone
Russian RomCom exploiting twin bugs
Security researchers at ESET have uncovered an attack chain that exploitis multiple vulnerabilities to deploy the RomCom backdoor without requiring any user interaction.RomCom, also known as Tropical ... Read more