CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Over 6 Million Sites at Risk: Severe Privilege Escalation Flaw CVE-2024-50550 in LiteSpeed Cache Plugin
Rafie Muhammad, a Security Researcher at Patchstack, reveals a severe security vulnerability in the LiteSpeed Cache plugin—a popular WordPress caching plugin with over six million active installations ... Read more
-
Cybersecurity News
Researcher Exposes Critical Vulnerabilities in Google Cloud
In a recent in-depth analysis, Christophe Tafani-Dereeper, a prominent Cloud Security Researcher at DATADOG, highlights critical vulnerabilities within Google Cloud’s default service accounts that put ... Read more
-
Cybersecurity News
Interlock Ransomware: New Threat Targets Windows & FreeBSD
A new ransomware group dubbed “Interlock” has emerged, setting its sights on both Windows and FreeBSD operating systems. This multi-platform approach signals a concerning trend in the ransomware lands ... Read more
-
The Register
Windows Themes zero-day bug exposes users to NTLM credential theft
There's a Windows Themes spoofing zero-day bug on the loose that allows attackers to steal people's NTLM credentials. That's the bad news. The good news: Acros Security's 0patch has developed a free m ... Read more
-
BleepingComputer
QNAP patches second zero-day exploited at Pwn2Own to get root
QNAP has released security patches for a second zero-day bug exploited by security researchers during last week's Pwn2Own hacking contest. This critical SQL injection (SQLi) vulnerability, tracked as ... Read more
-
Cybersecurity News
Microsoft Boosts Email Security with General Availability of Inbound SMTP DANE with DNSSEC
Microsoft announced the general availability of Inbound SMTP DANE with DNSSEC for Exchange Online, marking a significant step forward in email security. This powerful feature combines two robust secur ... Read more
-
Help Net Security
Ransomware hits web hosting servers via vulnerable CyberPanel instances
A threat actor – or possibly several – has hit approximately 22,000 vulnerable instances of CyberPanel and encrypted files on the servers running it with the PSAUX and other ransomware. The PSAUX rans ... Read more
-
Cybersecurity News
CVE-2024-50387: Critical QNAP Flaw Exploited in Hacking Contest, Patch Now!
In a thrilling showdown at the recent Pwn2Own Ireland 2024 hacking competition, white hat hackers YingMuo (@YingMuo), in collaboration with the DEVCORE Internship Program, successfully exploited a cri ... Read more
-
TheCyberThrone
PSAUX Ransomware exploits CyberPanel Vulnerabilities
The PSAUX ransomware has seen exploiting CyberPanel vulnerabilities affects versions 2.3.6 and 2.3.7 and permits unauthenticated attackers to gain root access, enabling complete control over affected ... Read more
-
security.nl
Makers iOS-spyware voegen optie toe om werking iPhone te saboteren
De makers van de LightSpy-malware voor iOS hebben in een recente versie opties toegevoegd waardoor het mogelijk is om de werking van een besmette iPhone te saboteren. De toegevoegde plug-ins maken het ... Read more