CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Cisco ATA 190 Series Analog Telephone Adapter Firmware Flaws Exposed: Patch Now!
Cisco has recently disclosed a series of high-severity vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter firmware, including both on-premises and multiplatform variants. These vulne ... Read more
-
Cybersecurity News
HM Surf (CVE-2024-44133): macOS Flaw Exposing Cameras and Microphones to Hackers, PoC Published
In a significant discovery by Microsoft Threat Intelligence, a vulnerability in macOS, identified as CVE-2024-44133, has been found to bypass Apple’s Transparency, Consent, and Control (TCC) technolog ... Read more
-
TheCyberThrone
VMware fixes CVE-2024-38814 in HCX
Broadcom disclosed a SQL injection vulnerability affecting VMware HCX, a key component used in multi-cloud infrastructures to enable application migration and disaster recovery.The vulnerability track ... Read more
-
The Cyber Express
GitHub Issues Urgent Security Advisory on Critical Vulnerability in GitHub Enterprise Server
GitHub has released a critical security advisory highlighting vulnerabilities that merit immediate action from users of GitHub Enterprise Server (GHES). The advisory focuses on a GitHub vulnerability ... Read more
-
Krypt3ia
Comprehensive Threat Intelligence Report: The Rise of Nation-State Cyber Attacks and Their Convergence with Cybercrime
TLP: WHITE This threat intelligence report was written in tandem between Krypt3ia and the ICEBREAKER Threat Intelligence Analyst created by Krypt3ia. Executive Summary Over the past year, nation-state ... Read more
-
Cybersecurity News
CVE-2024-43240 & CVE-2024-43242 in Ultimate Membership Pro Plugin Put 40,000 Websites at Risk
The Ultimate Membership Pro plugin, a premium WordPress plugin widely used for managing membership subscriptions, has been found to contain two critical vulnerabilities, according to a report from Raf ... Read more
-
The Hacker News
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
An advanced persistent threat (APT) actor with suspected ties to India has sprung forth with a flurry of attacks against high-profile entities and strategic infrastructures in the Middle East and Afri ... Read more
-
Kaspersky
SAS CTF and the many ways to persist a kernel shellcode on Windows 7
SAS 17 Oct 2024 16 minute read On May 18, 2024, Kaspersky’s Global Research & Analysis Team (GReAT), with the help of its partners, held the qualifying stage of the SAS CTF, an international competiti ... Read more
-
security.nl
Google verhelpt kritiek beveiligingslek in modem van Pixel-telefoons
Google heeft meerdere kritieke kwetsbaarheden in Pixel-telefoons verholpen, die aanwezig waren in de modem, het Trusty-besturingssysteem dat een Trusted Execution Environment (TEE) biedt en Advanced C ... Read more
-
TheCyberThrone
Apache CloudStack fixes several vulnerabilities
Apache CloudStack project has announced the release of LTS security releases 4.18.2.4 and 4.19.1.2 to address four security vulnerabilitiesThe most severe vulnerability, CVE-2024-45219 with a CVSS sco ... Read more