CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
AmberWolf Launches NachoVPN Tool to Tackle VPN Security Risks
Researchers reveal major vulnerabilities in popular corporate VPN clients, allowing remote attacks. Discover the NachoVPN tool and expert advisories to mitigate these critical security risks. In a rec ... Read more
-
Dark Reading
Russian Script Kiddie Assembles Massive DDoS Botnet
Source: Kundra via ShutterstockA Russian script kiddie using little more than publicly available malware tools and exploits targeting weak credentials and configurations has assembled a distributed de ... Read more
-
TheCyberThrone
QNAP fixes Vulnerabilities in QuRouter and Note Station 3
QNAP has addressed multiple vulnerabilities in several NAS devices include Photo Station, AI Core, QuLog Center, Media Streaming Add-on, QTS and QuTS hero.The two command injection vulnerabilities in ... Read more
-
TheCyberThrone
Gitlab fixes multiple vulnerabilities including CVE-2024-8114
GitLab has released patches to address multiple vulnerabilities affecting its Community Edition (CE) and Enterprise Edition (EE) products. Versions 17.6.1, 17.5.3, and 17.4.5 could allow privilege esc ... Read more
-
The Hacker News
APT-C-60 Exploits WPS Office Vulnerability to Deploy SpyGlace Backdoor
Malware / Cyber Espionage The threat actor known as APT-C-60 has been linked to a cyber attack targeting an unnamed organization in Japan that used a job application-themed lure to deliver the SpyGlac ... Read more
-
The Cyber Express
Hackers Exploit Firefox and Windows Flaws: RomCom’s Advanced Attack Unveiled
A Russia-aligned hacking group, known as RomCom (also identified as Storm-0978, Tropical Scorpius, or UNC2596), has successfully exploited two zero-day vulnerabilities—one in Mozilla Firefox and anoth ... Read more
-
security.nl
Malafide vpn-server kan via SonicWall en Palo Alto-lekken malware installeren
Twee kwetsbaarheden in de vpn-software van SonicWall en Palo Alto Networks maken het mogelijk voor aanvallers om via een malafide vpn-server bij gebruikers malware te installeren als die verbinding me ... Read more
-
Cybersecurity News
CVE-2024-11680 (CVSS 9.8): Critical ProjectSend Vulnerability Actively Exploited, PoC Published
A critical vulnerability in the open-source file-sharing web application ProjectSend, identified as CVE-2024-11680, is being actively exploited in the wild, according to a report by VulnCheck. Despite ... Read more
-
TheCyberThrone
VMware fixes multiple vulnerabilities in Aria Product
VMware has released patches to address multiple vulnerabilities affecting its Aria Operations product.The first vulnerability identified as CVE-2024-38830 with a CVSS score of 7.8 , could allow a mali ... Read more
-
Darktrace
FortiClient EMS exploited: Inside the attack chain and post-exploitation tactics
Soon after CVE-2023-48788 was publicly disclosed in late March 2024, Darktrace began to see compromises in FortiClient EMS devices on customer networks. Read on to find out more about what our Threat ... Read more