CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
North Korean and Chinese Threat Actors Target Crypto, Aerospace, and Government Agencies
The North Korean IT worker ecosystemAt CYBERWARCON 2024, Microsoft Threat Intelligence unveiled groundbreaking research on two major nation-state cyber actors: North Korea and China. These revelations ... Read more
-
Cybersecurity News
CVE-2023-28461 (CVSS 9.8): Critical Array Networks Vulnerability Added to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2023-28461, a high-severity security flaw impacting Array Networks AG and vxAG ArrayOS, to its Known Exploited Vulnerabil ... Read more
-
TheCyberThrone
CISA adds Array Networks CVE-2023-28461 to its KEV Catalog
The US CISA added Array Networks’ vulnerability to its Known Exploited Vulnerability Catalog based on the evidence of active exploitationCVE-2023-28461The vulnerability Array Networks AG and vxAG Arra ... Read more
-
Cybersecurity News
Lazarus Group Exploits xattr with “RustyAttr” to Evade Detection
Image: Tonmoy JituThe Lazarus Group, a notorious North Korean cyber espionage collective, has added another stealthy technique to its arsenal: the abuse of xattr, or extended file attributes, in Unix- ... Read more
-
Cybersecurity News
7 Android & Pixel Vulnerabilities Exposed: Researcher Publishes PoC Exploits
Image: GoogleOversecured, a renowned cybersecurity firm, has unearthed seven vulnerabilities within the Android operating system and Google Pixel devices. Two of these vulnerabilities specifically end ... Read more
-
BleepingComputer
QNAP addresses critical flaws across NAS, router software
QNAP has released security bulletins over the weekend, which address multiple vulnerabilities, including three critical severity flaws that users should address as soon as possible. Starting with QNAP ... Read more
-
Help Net Security
Faraway Russian hackers breached US organization via Wi-Fi
Forest Blizzard, a threat group associated with Russia’s GRU military intelligence service, repeatedly breached a US-based organization via compromised computer systems of nearby firms, which they lev ... Read more
-
BleepingComputer
Salt Typhoon hackers backdoor telcos with new GhostSpider malware
The Chinese state-sponsored hacking group Salt Typhoon has been observed utilizing a new "GhostSpider" backdoor in attacks against telecommunication service providers. The backdoor was discovered by T ... Read more
-
TheCyberThrone
AnyDesk affected by CVE-2024-52940
The open-source remote desktop software “Any Desk” has been affected by a vulnerability could allow attackers to uncover users’ IP addresses, posing significant privacy risks.The vulnerability tracked ... Read more
-
The Hacker News
THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 18 - Nov 24)
Cybersecurity / Critical Updates We hear terms like "state-sponsored attacks" and "critical vulnerabilities" all the time, but what's really going on behind those words? This week's cybersecurity news ... Read more