CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Prince Ransomware Hits UK and US via Royal Mail Phishing Scam
PDF containing a Dropbox URL | Image: Proofpoint Cybersecurity researchers at Proofpoint have uncovered a new phishing campaign that impersonates the British postal service, Royal Mail, to distribute ... Read more
-
Ars Technica
Persistent, stealthy Linux malware has infected thousands since 2021
The ability to remain installed and undetected makes Perfctl hard to fight. Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of mis ... Read more
-
Ars Technica
Thousands of Linux systems infected by stealthy malware since 2021
The ability to remain installed and undetected makes Perfctl hard to fight. Thousands of machines running Linux have been infected by a malware strain that’s notable for its stealth, the number of mis ... Read more
-
BleepingComputer
Recently patched CUPS flaw can be used to amplify DDoS attacks
A recently disclosed vulnerability in the Common Unix Printing System (CUPS) open-source printing system can be exploited by threat actors to launch distributed denial-of-service (DDoS) attacks with a ... Read more
-
Dark Reading
Thousands of DrayTek Routers at Risk From 14 Vulnerabilities
Source: PeterPhoto123 via ShutterstockPotentially tens of thousands of DrayTek routers, including models that many businesses and government agencies use, are at heightened risk of attack via 14 newly ... Read more
-
Dark Reading
CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog
Source: Kristoffer Tripplaar via Alamy Stock PhotoOne of the latest vulnerabilities that the Cybersecurity and Infrastructure Security Agency has added to the Known Exploited Vulnerabilities Catalog i ... Read more
-
AttackIQ
Emulating the Surging Hadooken Malware
On September 12, 2024, AquaSec reported the identification of a new Linux-based malware during an intrusion chain that abused misconfigurations on public-facing Oracle Weblogic Servers. Days later, on ... Read more
-
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
New Linux Malware ‘Perfctl’ Targets Millions by Mimicking System Files
New Linux malware ‘Perfctl’ is targeting millions worldwide, mimicking system files to evade detection. This sophisticated malware compromises Linux servers, exploiting vulnerabilities for cryptominin ... Read more
-
BleepingComputer
Over 4,000 Adobe Commerce, Magento shops hacked in CosmicSting attacks
Adobe Commerce and Magento online stores are being targeted in "CosmicSting" attacks at an alarming rate, with threat actors hacking approximately 5% of all stores. The CosmicSting vulnerability (CVE- ... Read more
-
Zero Day Initiative
From Pwn2Own Automotive: More Autel Maxicharger Vulnerabilities
The vulnerable function is responsible for handling ACMP messages received from a websockets server (that can be attacker-controlled). The exact meaning of “ACMP” is unknown but the researchers’ best ... Read more