CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cybersecurity News
Passive Backdoors, Active Threat: UNC1860’s Espionage Tools Exposed
Mandiant has uncovered alarming evidence of a sophisticated Iranian state-sponsored cyber campaign orchestrated by UNC1860, a threat actor likely affiliated with Iran’s Ministry of Intelligence and Se ... Read more
-
Cybersecurity News
CVE-2024-8698: Keycloak Vulnerability Puts SAML Authentication at Risk
Image: KeycloakIn a concerning development for organizations relying on Keycloak for secure identity and access management, a high-severity vulnerability has been discovered in its SAML signature vali ... Read more
-
Dark Reading
China's 'Earth Baxia' Spies Exploit Geoserver to Target APAC Orgs
Source: kb-photodesign via ShutterstockA China-linked cyber-espionage group has attacked Taiwanese government agencies, the Philippine and Japanese military, and energy companies in Vietnam, installin ... Read more
-
The Register
Apple's latest macOS release is breaking security software, network connections
Infosec In Brief Something's wrong with macOS Sequoia, and it's breaking security software installed on some updated Apple systems. Sequoia, aka macOS 15, was released on Monday of last week. By Thurs ... Read more
-
InfoSec Write-ups
HTB | Help -GraphQL and Blind SQL
This is the Box on Hack The Box Linux Privilege Escalation 101 Track. Find the box here.Skill LearnedGraphQL enumerationBlind SQL injectionNMAPIP: 10.10.10.121nmap -sT -p- --min-rate 10000 10.10.10.12 ... Read more
-
Help Net Security
Week in review: Critical VMware vCenter Server bugs fixed, Apple releases iOS 18
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Critical VMware vCenter Server bugs fixed (CVE-2024-38812) Broadcom has released fixes for two vulnera ... Read more
-
TheCyberThrone
TheCyberThrone Security Week In Review – September 21, 2024
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, September 21, 2024.Microsoft Kernel Vulne ... Read more
-
TheCyberThrone
Acronics warning on a critical vulnerability CVE-2024-8767
Acronis has released an advisory for a critical security vulnerability in its popular backup plugins for server management platforms like cPanel, Plesk, and DirectAdmin.The vulnerability, tracked as C ... Read more
-
Cybersecurity News
ZeroLogon to NoPac Vulnerability: Black Basta Group’s Exploit Arsenal Revealed
Desktop background on victim’s system after encryption | Image: QualysQualys has released a comprehensive report shedding light on the Black Basta ransomware, a highly disruptive threat that has wreak ... Read more
-
The Hacker News
Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks
A hacktivist group known as Twelve has been observed using an arsenal of publicly available tools to conduct destructive cyber attacks against Russian targets. "Rather than demand a ransom for decrypt ... Read more