CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Dark Reading
Hybrid Work Exposes New Vulnerabilities in Print Security
Source: Magnetic Mcc via ShutterstockThe shift to hybrid work models has exposed new vulnerabilities in corporate print infrastructure and heightened security risks at many organizations.The risks run ...
-
BleepingComputer
Critical Kubernetes Image Builder flaw gives SSH root access to VMs
A critical vulnerability in Kubernetes could allow unauthorized SSH access to a virtual machine running an image created with the Kubernetes Image Builder project. Kubernetes is an open-source platfor ...
-
TheCyberThrone
Google Chrome Version 130 Released
Google has released the new version of its Chrome browser and fixes around 17 vulnerabilities ranging between high and medium and low.High Severity CVE-2024-9954: Use after free in AI.Medium Severity ...
-
security.nl
Besmette advertenties gebruikten IE-lek voor 'zero-click' malware-infectie
Aanvallers hebben recentelijk besmette advertenties gebruikt om Windowsgebruikers zonder enige interactie met malware te infecteren. Daarbij werd gebruikgemaakt van een kwetsbaarheid in Internet Explo ...
-
BleepingComputer
Malicious ads exploited Internet Explorer zero day to drop malware
The North Korean hacking group ScarCruft launched a large-scale attack in May that leveraged an Internet Explorer zero-day flaw to infect targets with the RokRAT malware and exfiltrate data. ScarCruft ...
-
Krypt3ia
Threat Actor Profile: TA-RedAnt
Overview: Aliases: No known aliases Country of Origin: Likely from East Asia (speculated), with no firm attribution yet. Motivation: Primarily espionage and financially motivated attacks, potentially ...
-
Help Net Security
Defenders must adapt to shrinking exploitation timelines
A new report from Mandiant reveals that the average time-to-exploit vulnerabilities before or after a patch is released has plunged to just five days in 2023, down from 32 days in 2021 in 2022. One re ...
-
The Hacker News
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware
Zero-Day / Windows Security The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw in Windows to infect devices with malware known ...
-
Dark Reading
Sidewinder Casts Wide Geographic Net in Latest Attack Spree
Source: Papilio via Alamy Stock PhotoThe elusive, India-based advanced persistent threat (APT) group SideWinder has unleashed a new flurry of attacks against high-profile entities and strategic infras ...
-
Cybersecurity News
North Korean Hackers Exploit Zero-Day Flaw (CVE-2024-38178) in “Operation Code on Toast”
Image: AhnLabA joint report by AhnLab Security Emergency response Center (ASEC) and the National Cyber Security Center (NCSC) has revealed a new zero-day vulnerability (CVE-2024-38178) in Microsoft In ...