CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Ivanti fixes three critical flaws in Connect Secure & Policy Secure
Ivanti has released security updates for Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), and Ivanti Secure Access Client (ISAC) to address multiple vulnerabilities, including three critical s ...
-
The Hacker News
Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries
A subgroup within the infamous Russian state-sponsored hacking group known as Sandworm has been attributed to a multi-year initial access operation dubbed BadPilot that stretched across the globe. "Th ...
-
The Register
Russia's Sandworm caught snarfing credentials, data from American and Brit orgs
An initial-access subgroup of Russia's Sandworm last year wriggled its way into networks within the US, UK, Canada and Australia, stealing credentials and data from "a limited number of organizations, ...
-
Dark Reading
Microsoft: Russia's Sandworm APT Exploits Edge Bugs Globally
Source: Kenishirotie via Alamy Stock PhotoArguably, no advanced persistent threat (APT) enjoys as much notoriety as Sandworm, otherwise known as Military Unit 74455 within Russia's military intelligen ...
-
BleepingComputer
BadPilot network hacking campaign fuels Russian SandWorm attacks
A subgroup of the Russian state-sponsored hacking group APT44, also known as 'Seashell Blizzard' and 'Sandworm', has been targeting critical organizations and governments in a multi-year campaign dubb ...
-
The Hacker News
Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability
Container Security / Vulnerability Cybersecurity researchers have discovered a bypass for a now-patched security vulnerability in the NVIDIA Container Toolkit that could be exploited to break out of a ...
-
TheCyberThrone
CVE-2024-24472 impacts Fortinet Producrs
CVE-2024-24472 is a critical security vulnerability identified in Fortinet products, specifically FortiOS and FortiProxy. This vulnerability poses a significant threat to the integrity and security of ...
-
security.nl
Securitybedrijf publiceert exploit voor kritiek lek in duizenden SonicWall-firewalls
Securitybedrijf Bishop Fox heeft een exploit voor een kritieke kwetsbaarheid in firewalls van fabrikant SonicWall gepubliceerd waardoor ruim vierduizend apparaten risico lopen te worden aangevallen. E ...
-
security.nl
Apple ontdekt OpenSSL-kwetsbaarheid die mitm-aanval mogelijk maakt
Een beveiligingsonderzoeker van Apple heeft een kwetsbaarheid (CVE-2024-12797) in OpenSSL gevonden waardoor het in bepaalde gevallen mogelijk is om man-in-the-middle (mitm)-aanvallen uit te voeren. He ...
-
security.nl
Adobe Illustrator-lekken laten aanvaller code via malafide afbeelding uitvoeren
woensdag 12 februari 2025, 11:14 door Redactie, 0 reactiesLaatst bijgewerkt: Vandaag, 11:30 Drie kritieke kwetsbaarheden in Adobe Illustrator 2024 en 2025 maken het mogelijk voor een aanvaller om will ...