CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Trend Micro
Spot the Difference: Earth Kasha's New LODEINFO Campaign And The Correlation Analysis With The APT10 Umbrella
This blog is based on a presentation by the authors at Virus Bulletin 2024. Introduction LODEINFO is a malware used in attacks targeting mainly Japan since 2019. Trend Micro has been tracking the grou ... Read more
-
The Register
Critical 9.8-rated VMware vCenter RCE bug exploited after patch fumble
Two VMware vCenter server bugs, including a critical heap-overflow vulnerability that leads to remote code execution (RCE), have been exploited in attacks after Broadcom’s first attempt to fix the fla ... Read more
-
BleepingComputer
Palo Alto Networks patches two firewall zero-days used in attacks
Palo Alto Networks has finally released security updates for two actively exploited zero-day vulnerabilities in its Next-Generation Firewalls (NGFW). The first flaw, tracked as CVE-2024-0012, is an au ... Read more
-
BleepingComputer
Critical RCE bug in VMware vCenter Server now exploited in attacks
Broadcom warned today that attackers are now exploiting two VMware vCenter Server vulnerabilities, one of which is a critical remote code execution flaw. TZL security researchers reported the RCE vul ... Read more
-
0patch.com
Fixing a Bunch of Scripting Engine Vulnerabilities by Disabling Just-In-Time Compiler (CVE-2024-38178)
August 2024 Windows Updates brought a patch for CVE-2024-38178, a remotely exploitable memory corruption issue in "legacy" Scripting Engine (JScript9.dll). This engine, while part of long-expired Inte ... Read more
-
Dark Reading
Palo Alto Networks Patches Critical Zero-Day Firewall Bug
Source: tofino via Alamy Stock Photo Palo Alto Networks (PAN) put out an advisory Friday warning its customers that a critical, unauthenticated remote code execution (RCE) bug is under exploit by cybe ... Read more
-
The Cyber Express
Palo Alto Reports Two More Bugs in PAN-OS That Are Being Actively Exploited
An alarming set of chained vulnerabilities in Palo Alto Networks’ PAN-OS software has sparked concerns that attackers could seize administrator privileges through an authentication bypass. The first v ... Read more
-
Cybersecurity News
CVE-2024-0012 and CVE-2024-9474: Actively Exploited Vulnerabilities Impact Palo Alto Networks PAN-OS
Palo Alto Networks has issued critical advisories regarding two actively exploited vulnerabilities in their PAN-OS software, posing significant risks to organizations relying on the platform for netwo ... Read more
-
Cybersecurity News
CVE Alert on November 18th, 2024
by do son · Published November 18, 2024 · Updated November 18, 2024 ... Read more
-
security.nl
ISC meldt actief misbruik van beveiligingslek in Citrix Session Recording
maandag 18 november 2024, 16:58 door Redactie, 2 reactiesLaatst bijgewerkt: Vandaag, 13:12 Het Internet Storm Center (ISC) meldt vandaag dat aanvallers actief misbruik maken van kwetsbaarheden in 'Cit ... Read more