CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group
A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea. The security vulnerability, tracked as CV ... Read more
-
The Register
RansomHub-linked EDR-killing malware spotted in the wild
in brief Malware that kills endpoint detection and response (EDR) software has been spotted on the scene and, given it's deploying RansomHub, it could soon be prolific. Discovered by Sophos analysts a ... Read more
-
Cybersecurity News
Beware of Fake PoC Exploits for 0-Click RCE CVE-2024-38063 on GitHub
Security researchers have discovered a series of fake proof-of-concept (PoC) exploit codes for the critical CVE-2024-38063 vulnerability affecting Windows systems. These fraudulent exploits, which hav ... Read more
-
Cybersecurity News
CVE-2024-7646: A Threat to Kubernetes Clusters Running ingress-nginx
A newly discovered security vulnerability, CVE-2024-7646, has been identified in the widely used ingress-nginx controller for Kubernetes, posing a severe threat to multi-tenant environments. With a CV ... Read more
-
Cybersecurity News
Cloud Attack: Extortionists Breach AWS, Expose 90,000 Variables
High-level example of the threat actor's operational architecture | Image: Unit 42Palo Alto Networks has uncovered a large-scale ransomware campaign that has impacted over 100,000 domains. The perpetr ... Read more
-
Cybersecurity News
Gafgyt Botnet: Now Exploiting GPU Power in Cloud-Native Environments
Gafgyt attack flow | Image: Aqua NautilusResearchers at Aqua Nautilus have identified a new variant of the Gafgyt botnet that represents a significant evolution in malware targeting strategies. Origin ... Read more
-
Cyber Security News
Cyber Security News Letter – Data Breaches, Vulnerability, Cyber Attack & Other Stories
The “Weekly Cyber Security News Letter – Data Breaches, Vulnerability, Cyber Attack & More” provides a comprehensive overview of the latest developments in the cybersecurity landscape. Each edition hi ... Read more
-
Help Net Security
Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Unpatched MS Office flaw may leak NTLM hashes to attackers (CVE-2024-38200) A new MS Office zero-day v ... Read more
-
TheCyberThrone
TheCyberThrone Security Week In Review – August 17, 2024
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, August 17, 2024.Microsoft Patch Tuesday-A ... Read more
-
seclists.org
Improper Authentication (CWE-287) CVE-2024-33897
Full Disclosure mailing list archives From: Moritz Abrell via Fulldisclosure <fulldisclosure () seclists org> Date: Sun, 11 Aug 2024 19:49:16 +0200 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advi ... Read more