CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Google fixes ninth Chrome zero-day tagged as exploited this year
Today, Google released a new Chrome emergency security update to patch a zero-day vulnerability tagged as exploited in attacks. "Google is aware that an exploit for CVE-2024-7971 exists in the wild, ...
-
The Register
Microsoft's Patch Tuesday borks dual-boot Linux-Windows PCs
Microsoft says it's investigating issues with a patch intended to plug a two-year-old flaw in the GRUB open source boot loader that is crashing some dual-boot computers running both Windows and Linux. ...
-
Dark Reading
'Styx Stealer' Blows Its Own Cover With Sloppy OpSec Mistake
Source: BLKstudio via ShutterstockSecurity researchers were able to gather valuable information on the creator of a sophisticated new malware tool called Styx Stealer because of a basic operational se ...
-
Dark Reading
Taiwan University Under Fire From Unique DLL Backdoor
Source: James Stone via Alamy Stock PhotoA never-before-seen backdoor, dubbed Msupedge, is targeting victims in Taiwan, using a unique communications technique.After Symantec researchers caught the ma ...
-
BleepingComputer
Litespeed Cache bug exposes millions of WordPress sites to takeover attacks
A critical vulnerability in the LiteSpeed Cache WordPress plugin can let attackers take over millions of websites after creating rogue admin accounts. LiteSpeed Cache is open-source and the most popul ...
-
The Hacker News
Microsoft Patches Critical Copilot Studio Vulnerability Exposing Sensitive Data
Software Security / Vulnerability Cybersecurity researchers have disclosed a critical security flaw impacting Microsoft's Copilot Studio that could be exploited to access sensitive information. Tracke ...
-
Cybersecurity News
Microsoft, Linux, Dahua Flaws Exploited: CISA Warns
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert, adding four critical security vulnerabilities impacting Microsoft Exchange Server, the Linux kernel, and Da ...
-
TheCyberThrone
Atlassian fixes CVE-2024-21689 vulnerability in Bamboo
Atlassian has issued a patch for a high severity vulnerability in its Bamboo Data Center and Server products, which is a Remote Code Execution.The vulnerability tracked as CVE-2024-21689 with a CVSS s ...
-
Cybersecurity News
CVE-2024-28000 (CVSS 9.8): Active Exploitation of Litespeed Cache Vulnerability, 5 Million WordPress Sites at Risk of Complete Takeover
A critical security vulnerability (CVE-2024-28000, CVSS 9.8) in the widely-used Litespeed Cache plugin for WordPress has been disclosed, leaving over 5 million websites at risk of complete takeover. T ...
-
security.nl
Miljoenen WordPress-sites kwetsbaar door kritiek lek in LiteSpeed Cache
Miljoenen WordPress-sites lopen het risico om via een kritieke kwetsbaarheid in de plug-in LiteSpeed Cache door aanvallers te worden overgenomen. Een update is beschikbaar, maar een groot aantal websi ...