CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
security.nl
Bootloader-beveiligingslek laat aanvallers UEFI Secure Boot omzeilen
Een kwetsbaarheid in een bootloader-applicatie maakt het mogelijk voor aanvallers om UEFI Secure Boot te omzeilen en zo het systeem te compromitteren. Het probleem is inmiddels door de betrokken lever ...
-
Help Net Security
Configuration files for 15,000 Fortinet firewalls leaked. Are yours among them?
A threat actor has leaked configuration files (aka configs) for over 15,000 Fortinet Fortigate firewalls and associated admin and user credentials. The collection has been leaked on Monday and publici ...
-
Dark Reading
Trusted Apps Sneak a Bug Into the UEFI Boot Process
Source: Ognyan Yosifov via Alamy Stock PhotoA vulnerability in trusted system recovery programs could allow privileged attackers to inject malware directly into the system startup process in Unified E ...
-
TheCyberThrone
Ivanti fixes Critical Security Vulnerabilities in EPM
OverviewIvanti has recently addressed multiple critical and high-severity vulnerabilities in its Endpoint Manager (EPM) software. These vulnerabilities could allow unauthorized access, remote code exe ...
-
Help Net Security
New UEFI Secure Boot bypass vulnerability discovered (CVE-2024-7344)
ESET researchers have identified a vulnerability (CVE-2024-7344) impacting most UEFI-based systems, which allows attackers to bypass UEFI Secure Boot. The issue was found in a UEFI application signed ...
-
security.nl
Configuraties en vpn-wachtwoorden 15.000 Fortinet-firewalls online gezet
Op internet zijn de configuratiegegevens en vpn-wachtwoorden van 15.000 Fortinet FortiGate-firewalls gepubliceerd, zo stelt de Britse beveiligingsonderzoeker Kevin Beaumont. Het gaat om ip-adressen va ...
-
The Hacker News
Python-Based Malware Powers RansomHub Ransomware to Exploit Network Flaws
Endpoint Security / Ransomware Cybersecurity researchers have detailed an attack that involved a threat actor utilizing a Python-based backdoor to maintain persistent access to compromised endpoints a ...
-
The Hacker News
Researcher Uncovers Critical Flaws in Multiple Versions of Ivanti Endpoint Manager
Vulnerability / Endpoint Security Ivanti has rolled out security updates to address several security flaws impacting Avalanche, Application Control Engine, and Endpoint Manager (EPM), including four c ...
-
TheCyberThrone
CVE-2024-50603 impacts Aviatrix with Cryptomining
CVE-2024-50603 is a critical security vulnerability identified in the Aviatrix Controller, a cloud networking platform used to manage and secure cloud infrastructure across multiple providers. This vu ...
-
seclists.org
CVE-2024-48463
Full Disclosure mailing list archives From: Rodolfo Tavares via Fulldisclosure <fulldisclosure () seclists org> Date: Tue, 14 Jan 2025 18:46:08 -0300 =====[ Tempest Security Intelligence - ADV-10/2024 ...