Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Apple Backports Fixes for Three Actively Exploited Zero-Days Targeting Older Devices
Apple has released backported security patches for older versions of iOS, iPadOS, and macOS, addressing three zero-day vulnerabilities that have been exploited in targeted attacks. The flaws, original ... Read more
-
Daily CyberSecurity
CISA Warns of Active Exploitation of Cisco Smart Licensing Utility Flaw
In a critical update to its Known Exploited Vulnerabilities (KEV) Catalog, the Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2024-20439 (CVSS 9.8), a high-severity static crede ... Read more
-
The Register
CISA spots spawn of Spawn malware targeting Ivanti flaw
Owners of Ivanti’s Connect Secure, Policy Secure, and ZTA Gateway products have a new strain of malware to fend off, according to the US Cybersecurity and Infrastructure Security Agency, aka CISA. If ... Read more
-
Daily CyberSecurity
Earth Alux APT Group: Unveiling Its Espionage Toolkit
VARGEIT and controller interaction | Image: Trend MicroResearchers at Trend Micro detail a highly sophisticated cyber-espionage group actively targeting the Asia-Pacific and Latin American regions. Kn ... Read more
-
Daily CyberSecurity
CVE-2025-1449 (CVSS 9.1): Vulnerability in Verve Asset Manager Allows Admin Shell Access
Rockwell Automation has released a security advisory addressing a vulnerability in Verve Asset Manager. The advisory details a flaw that could allow a threat actor with administrative access to execut ... Read more
-
Daily CyberSecurity
KNIME Business Hub Hit by Critical Bugs, Including Hard-Coded Password and XSS Flaws
A recent security advisory from KNIME details several vulnerabilities affecting the KNIME Business Hub, a customer-managed KNIME Hub instance that provides access to Hub resources and allows for custo ... Read more
-
Daily CyberSecurity
Bulletproof Hosting Fuels Russia-Linked Intrusion Sets’ Global Cyber Campaign
Layout of UAC-0006’s spam infrastructure by the end of 2023 and early 2024 | Image: IntrinsecA recent report by Intrinsec has uncovered the activities of Russia-aligned intrusion sets, UAC-0050 and UA ... Read more
-
The Register
Oracle Cloud security SNAFU latest: IT giant accused of pedantry as evidence scrubbed
Two Oracle data security breaches have been reported in the past week, and the database goliath not only remains reluctant to acknowledge the disasters publicly – it may be scrubbing the web of eviden ... Read more
-
Dark Reading
Oracle Cloud Users Urged to Take Action
Source: sdx15 via ShutterstockWith Oracle not budging from its denial of a breach that a growing number of security experts believe occurred, some are urging the company's cloud customers to take imme ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more