CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Windows Downgrade Attack Risks Exposing Patched Systems to Old Vulnerabilities
Windows Security / Vulnerability Microsoft said it is developing security updates to address two loopholes that it said could be abused to stage downgrade attacks against the Windows update architectu ... Read more
-
Help Net Security
“Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days
A researcher has developed a downgrade attack that can make Windows machines covertly, persistently and irreversibly vulnerable, even if they were fully patched before that. A downgrade attack exploit ... Read more
-
Cyber Security News
Cisco Software Manager Password Change Vulnerability Let Hackers Change password
A critical vulnerability in Cisco’s Smart Software Manager On-Prem (SSM On-Prem) has surfaced, allowing unauthenticated, remote attackers to change user passwords, including those of administrative us ... Read more
-
Cyber Security News
AMD Patches Multiple Memory Vulnerabilities That Leads Corrupt The Guest VM
Three potential vulnerabilities in Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP) could allow an attacker to read or corrupt the memory of a guest VM. To establish an isolated execut ... Read more
-
security.nl
Windows kwetsbaar voor downgrade-aanval via Windows Update
Windows is kwetsbaar voor een downgrade-aanval, waarbij een aanvaller die toegang tot een systeem heeft via Windows Update aanwezige patches permanent kan verwijderen. Het besturingssysteem denkt na d ... Read more
-
Cybersecurity News
NHS Supplier Fined £6M for Data Breach After Ransomware Attack
British regulators have imposed a preliminary fine exceeding £6 million on Advanced, a service provider for the National Health Service (NHS). The company failed to adequately protect the information ... Read more
-
security.nl
Cisco ip-telefoons via kritieke kwetsbaarheid op afstand over te nemen
Ip-telefoons van Cisco zijn via verschillende kritieke kwetsbaarheden op afstand door een ongeauthenticeerde aanvaller volledig over te nemen en een update zal het bedrijf niet beschikbaar maken. Als ... Read more
-
Cybersecurity News
Google Reveals Effingo: The Tech Behind Moving 1.2 Exabytes Daily
Google has unveiled the technical details of its internal data transfer tool called Effingo, which moves an average of 1.2 exabytes of information daily.At the SIGCOMM 2024 conference in Sydney, a rep ... Read more
-
Cybersecurity News
Proposed US Ban on Chinese Tech Impacts Autonomous Vehicles
The United States Department of Commerce plans to propose a ban on the use of Chinese software in autonomous vehicles in the coming weeks, according to Reuters.The proposed legislation will affect car ... Read more
-
Cyber Security News
Cisco Small Business IP Phones Vulnerabilities: Attackers Can Execute Arbitrary Commands
Cisco has disclosed multiple critical vulnerabilities affecting its Small Business SPA300 and SPA500 Series IP Phones, potentially allowing attackers to execute arbitrary commands with root privileges ... Read more