CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf
The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel as part of a cyber espionage campaign targeting the U.A.E. an ... Read more
-
Help Net Security
Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) For October 202 ... Read more
-
TheCyberThrone
TheCyberThrone Security BiWeekly Review – October 12, 2024
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the weeks ending Saturday, October 5, 12, 2024.Microsoft Patch Tues ... Read more
-
Cybersecurity News
Suspected Nation-State Adversary Exploits Ivanti CSA in a Series of Sophisticated Attacks
Fortinet’s FortiGuard Labs recently released a detailed analysis of a sophisticated cyberattack targeting the Ivanti Cloud Services Appliance (CSA). The attackers, suspected to be a nation-state actor ... Read more
-
Cybersecurity News
CVE-2024-9180: HashiCorp Vault Vulnerability Could Lead to Privilege Escalation
HashiCorp has issued a security bulletin disclosing a vulnerability in its Vault secret management platform that could allow attackers to escalate their privileges to the highly sensitive root policy. ... Read more
-
TheCyberThrone
Veeam Backup flaw CVE-2024-40711 used in ransomware campaigns
Security agencies were alerting about the mass exploitation of a critical Veeam backup and replication vulnerability by ransomware groups.The vulnerability tracked as CVE-2024-40711 with a CVSS score ... Read more
-
TheCyberThrone
Gitlab fixes several vulnerabilities including CVE-2024-9164
GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE) to address multiple vulnerabilities,The critical vulnerability tracked as CVE-2024-9164, An issue was discovered ... Read more
-
Trend Micro
Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East
APT & Targeted Attacks Trend Micro's investigation into the recent activity of Earth Simnavaz provides new insights into the APT group’s evolving tactics and the immediate threat it poses to sectors i ... Read more
-
BleepingComputer
How open source SIEM and XDR tackle evolving threats
In today's cybersecurity landscape, evolving threats require security solutions that match the sophistication of modern threats. As businesses rapidly adopt emerging technologies, their exposure to cy ... Read more
-
The Hacker News
Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries
Industrial Security / Critical Infrastructure Details have emerged about multiple security vulnerabilities in two implementations of the Manufacturing Message Specification (MMS) protocol that, if suc ... Read more