Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
- Cybersecurity News
Sharp and Toshiba Tec MFPs Exposed: Multiple Vulnerabilities Put Businesses at Risk
A new report reveals a concerning number of security vulnerabilities affecting Sharp and Toshiba Tec multifunction printers (MFPs). These flaws could allow attackers to crash devices, steal sensitive ... Read more
- Cybersecurity News
Cosmos Hub’s LSM: North Korean Development Raises Security Concerns
Cosmos Hub, a prominent decentralized project, finds itself embroiled in controversy amidst revelations that the development of its Liquid Staking Module (LSM) may have involved specialists from North ... Read more
- Cybersecurity News
Driver Signature Enforcement Cracked: OS Downgrade Attacks Possible on Windows
Downgrading only ci.dll to its unpatched version works well against a fully patched Windows 11 23h2 machine | Image: SafeBreachSafeBreach specialist Alon Leviev has discovered that attackers can explo ... Read more
- Cybersecurity News
CVE-2024-46483 (CVSS 9.8): Xlight FTP Server Flaw Leaves Users Exposed to Remote Attacks, PoC Published
A severe security vulnerability has been identified in the Xlight SFTP server, a popular Windows-based FTP and SFTP solution designed for secure, high-performance file transfer. Designated as CVE-2024 ... Read more
- Dark Reading
Windows 'Downdate' Attack Reverts Patched PCs to a Vulnerable State
Source: willi Lumintang via ShutterstockFully patched Windows 11 systems are vulnerable to attacks that allow an adversary to install custom rootkits that can neutralize endpoint security mechanisms, ... Read more
- Dark Reading
Mozilla: ChatGPT Can Be Manipulated Using Hex Code
Source: Igor Stevanovic via Alamy Stock PhotoA new prompt-injection technique could allow anyone to bypass the safety guardrails in OpenAI's most advanced language learning model (LLM).GPT-4o, release ... Read more
- security.nl
IOS-lekken geven toegang tot gevoelige informatie op vergrendelde iPhone
Kwetsbaarheden in Apples iOS maken het opnieuw mogelijk voor een aanvaller met fysieke toegang tot een vergrendelde iPhone om gevoelige informatie te stelen. Apple heeft updates uitgebracht om de prob ... Read more
- security.nl
Italiaanse Post lekt data 25.000 mensen via niet gepatchte Exchange-server
De Italiaanse Post heeft van 25.000 mensen de gegevens gelekt, omdat het had nagelaten beveiligingsupdates voor bekende en actief misbruikte kwetsbaarheden in Microsoft Exchange Server te installeren. ... Read more
- TheCyberThrone
Progress fixes Critical vulnerability in Whatsup Gold
Progress Software has disclosed a critical vulnerability in its popular network monitoring solution, WhatsUp Gold, that exposes organizations to potential cyberattacks by allowing unauthorized access ... Read more
- TheCyberThrone
The CyberThrone most exploited vulnerabilities review – October 26, 2024
Welcome to TheCyberThrone most exploited vulnerabilities review. This review is for the weeks ending Saturday, October 26, 2024.Fortinet FortiManagerCVE-2024-47575: With a CVSS score of 9.8, it deemed ... Read more