CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Authd Vulnerability (CVE-2024-9313) Allows User Impersonation on Ubuntu Systems
A high-severity vulnerability, CVE-2024-9313 ((CVSS 8.8)), has been discovered in Authd, an authentication daemon used for secure identity and access management in Ubuntu machines. This flaw could all ... Read more
-
Cybersecurity News
CVE-2024-47561: Critical Flaw in Apache Avro Java SDK Allows Arbitrary Code Execution
A critical security vulnerability (CVE-2024-47561) has been discovered in the Apache Avro Java SDK, potentially allowing attackers to execute arbitrary code on affected systems. This vulnerability aff ... Read more
-
Cybersecurity News
Cybercriminals Exploit CosmicSting Vulnerability, Hacking Thousands of Adobe Commerce and Magento Stores
Malware in the National Geographic store | Image: SansecIn a significant cybersecurity breach this summer, cybercriminals compromised approximately 5% of all Adobe Commerce and Magento stores, affecti ... Read more
-
Cybersecurity News
Prince Ransomware Hits UK and US via Royal Mail Phishing Scam
PDF containing a Dropbox URL | Image: Proofpoint Cybersecurity researchers at Proofpoint have uncovered a new phishing campaign that impersonates the British postal service, Royal Mail, to distribute ... Read more
-
Ars Technica
Persistent, stealthy Linux malware has infected thousands since 2021
The ability to remain installed and undetected makes Perfctl hard to fight. Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of mis ... Read more
-
Ars Technica
Thousands of Linux systems infected by stealthy malware since 2021
The ability to remain installed and undetected makes Perfctl hard to fight. Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of mis ... Read more
-
BleepingComputer
Recently patched CUPS flaw can be used to amplify DDoS attacks
A recently disclosed vulnerability in the Common Unix Printing System (CUPS) open-source printing system can be exploited by threat actors to launch distributed denial-of-service (DDoS) attacks with a ... Read more
-
Dark Reading
Thousands of DrayTek Routers at Risk From 14 Vulnerabilities
Source: PeterPhoto123 via ShutterstockPotentially tens of thousands of DrayTek routers, including models that many businesses and government agencies use, are at heightened risk of attack via 14 newly ... Read more
-
Dark Reading
CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog
Source: Kristoffer Tripplaar via Alamy Stock PhotoOne of the latest vulnerabilities that the Cybersecurity and Infrastructure Security Agency has added to the Known Exploited Vulnerabilities Catalog i ... Read more
-
AttackIQ
Emulating the Surging Hadooken Malware
On September 12, 2024, AquaSec reported the identification of a new Linux-based malware during an intrusion chain that abused misconfigurations on public-facing Oracle Weblogic Servers. Days later, on ... Read more