CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
KartLANPwn (CVE-2024-45200) Exploits Mario Kart 8 Deluxe LAN Play Feature for RCE
A serious vulnerability, dubbed KartLANPwn (CVE-2024-45200), has been identified in the wildly popular Nintendo game Mario Kart 8 Deluxe, putting millions of players at risk of remote code execution ( ...
-
Cybersecurity News
Hadooken & K4Spreader Malware: 8220 Gang’s Latest Cloud Hijacking Tools
Linux infection routine | Image: Sekoia’s Threat Detection & Research (TDR) teamThe notorious 8220 Gang, a China-based intrusion set first identified in 2018, continues to expand its arsenal with two ...
-
Cybersecurity News
PLANET Technology Switches Face CVE-2024-8456 (CVSS 9.8), Urgent Firmware Updates Advised
The Taiwan Computer Emergency Response Team (TWCERT/CC) has released a series of security advisories highlighting critical vulnerabilities affecting various PLANET Technology switch models. These vuln ...
-
Cybersecurity News
CVE-2024-22170 (CVSS 9.2): Western Digital Addresses Critical Flaw in My Cloud Devices
Western Digital has released a security advisory addressing a high-severity vulnerability (CVE-2024-22170) impacting a range of My Cloud devices. The vulnerability, which carries a CVSS score of 9.2, ...
-
TheCyberThrone
Storm-0501 deploys Embargo Ransomware in Hybrid Cloud Environment
Security researchers from Microsoft has observed the threat actor tracked as Storm-0501 launching a multi-staged attack where they compromised hybrid cloud environments and performed lateral movement ...
-
cert.pl
Vulnerability in Redlink SDK
CVE ID CVE-2024-6051 Publication date 30 September 2024 Vendor Vercom S.A. Product Redlink SDK Vulnerable versions All through 1.13 Vulnerability type (CWE) Improper Control of Resource Identifiers (' ...
-
The Hacker News
THN Cybersecurity Recap: Last Week's Top Threats and Trends (September 23-29)
Cybersecurity / Weekly Recap Hold onto your hats, folks, because the cybersecurity world is anything but quiet! Last week, we dodged a bullet when we discovered vulnerabilities in CUPS that could've o ...
-
The Hacker News
Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks
Critical security vulnerabilities have been disclosed in six different Automatic Tank Gauge (ATG) systems from five manufacturers that could expose them to remote attacks. "These vulnerabilities pose ...
-
TheCyberThrone
NVIDIA Container Toolkit TOCTOU Vulnerability CVE-2024-0132
Security researchers from Wiz has uncovered a critical vulnerability in the NVIDIA Container Toolkit could allow a container to escape and gain full access to the underlying host.The vulnerability t ...
-
TheCyberThrone
TI WooCommerce Wishlist SQL Injection Vulnerability CVE-2024-43917
A critical security vulnerability has been discovered in the WordPress plugin, TI WooCommerce Wishlist, potentially exposing over 100,000 websites to malicious attacks that allows unauthenticated user ...