CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Suspected Nation-State Adversary Exploits Ivanti CSA in a Series of Sophisticated Attacks
Fortinet’s FortiGuard Labs recently released a detailed analysis of a sophisticated cyberattack targeting the Ivanti Cloud Services Appliance (CSA). The attackers, suspected to be a nation-state actor ... Read more
-
Cybersecurity News
CVE-2024-9180: HashiCorp Vault Vulnerability Could Lead to Privilege Escalation
HashiCorp has issued a security bulletin disclosing a vulnerability in its Vault secret management platform that could allow attackers to escalate their privileges to the highly sensitive root policy. ... Read more
-
TheCyberThrone
Veeam Backup flaw CVE-2024-40711 used in ransomware campaigns
Security agencies were alerting about the mass exploitation of a critical Veeam backup and replication vulnerability by ransomware groups.The vulnerability tracked as CVE-2024-40711 with a CVSS score ... Read more
-
TheCyberThrone
Gitlab fixes several vulnerabilities including CVE-2024-9164
GitLab released security updates for Community Edition (CE) and Enterprise Edition (EE) to address multiple vulnerabilities,The critical vulnerability tracked as CVE-2024-9164, An issue was discovered ... Read more
-
Trend Micro
Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East
APT & Targeted Attacks Trend Micro's investigation into the recent activity of Earth Simnavaz provides new insights into the APT group’s evolving tactics and the immediate threat it poses to sectors i ... Read more
-
BleepingComputer
How open source SIEM and XDR tackle evolving threats
In today's cybersecurity landscape, evolving threats require security solutions that match the sophistication of modern threats. As businesses rapidly adopt emerging technologies, their exposure to cy ... Read more
-
The Hacker News
Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries
Industrial Security / Critical Infrastructure Details have emerged about multiple security vulnerabilities in two implementations of the Manufacturing Message Specification (MMS) protocol that, if suc ... Read more
-
Cybersecurity News
CISA Adds Three Actively Exploited Security Vulnerabilities to KEV Catalog, Urges Urgent Patching
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three new security flaws to its Known Exploited Vulnerabilities (KEV) catalog, following confirmed reports of active exploita ... Read more
-
TheCyberThrone
Ivanti releases patches to address CSA bugs
Ivanti has released patches for its Cloud Services Appliance (CSA) to address multiple vulnerabilities, including one that is actively being exploited in the wild.The vulnerabilities affect CSA versio ... Read more
-
Cybersecurity News
Firefox Zero-Day Vulnerability: Urgent Update Needed to Patch CVE-2024-9680
In a recent security advisory, the Mozilla Foundation has revealed a zero-day vulnerability in its popular web browser, Firefox. Identified as CVE-2024-9680, the flaw involves a use-after-free vulnera ... Read more