CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
CVE-2024-9921 (CVSS 9.8): Critical Flaw Found in Popular Business Collaboration Tool Team+
In a recent vulnerability note issued by TWCERT/CC (Taiwan Computer Emergency Response Team / Coordination Center), three significant security vulnerabilities have been identified in Team+, a popular ... Read more
-
Dark Reading
Serious Adversaries Circle Ivanti CSA Zero-Day Flaws
Source: Kristoffer Tripplaar via Alamy Stock Photo A deft chaining together of three separate zero-day flaws in Ivanti's Cloud Service Appliance allowed a particularly potent cyberattacker to infiltra ... Read more
-
TheCyberThrone
Apache Roller Vulnerability CVE-2024-46911
The Apache Software Foundation has released a security update for Apache Roller The vulnerability, tracked as CVE-2024-46911, a critical Cross-site Request Forgery (CSRF) vulnerability that could allo ... Read more
-
The Cyber Express
Cyble Sensors Uncover Cyberattacks Targeting Key Vulnerabilities
Cyble’s Vulnerability Intelligence unit has spotlighted a series of cyberattacks targeting critical vulnerabilities in various software systems, including the Ruby SAML library, D-Link NAS devices, an ... Read more
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
Zero-day Flaws Exposed EV Chargers to Shutdowns and Data Theft
NCC Group experts share details of how they exploited critical zero-day vulnerabilities in Phoenix Contact EV chargers (electric vehicles chargers) at 44con, demonstrating the cybersecurity risks. Dis ... Read more
-
The Register
Thousands of Fortinet instances vulnerable to actively exploited flaw
More than 86,000 Fortinet instances remain vulnerable to the critical flaw that attackers started exploiting last week, according to Shadowserver's data. The most recent count taken from Sunday put th ... Read more
-
The Hacker News
Nation-State Attackers Exploiting Ivanti CSA Flaws for Network Infiltration
Network Security / Vulnerability A suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance (CSA) a zero-day to perform a series of malicio ... Read more
-
schneier.com
Perfectl Malware
Perfectl in an impressive piece of malware: The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make ... Read more
-
security.nl
Kritiek lek in Veeam back-upservers gebruikt bij ransomware-aanvallen
Aanvallers maken actief misbruik van een kritieke kwetsbaarheid in Veeam Backup & Replication bij het uitvoeren van ransomware-aanvallen. Dat meldt antivirusbedrijf Sophos. Veaam kwam begin vorige maa ... Read more
-
The Hacker News
Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware
Ransomware / Vulnerability Threat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and Fog ransomware. Cybersecurity vendor Sophos sa ... Read more