CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Microsoft Patches Record 622 Flaws, Including Two Zero-Days Under Active Attack
Microsoft shipped its largest Patch Tuesday on record today, and two of the fixes close holes that attackers are already exploiting. The release covers 622 of Microsoft's own CVEs by its Security Upda ...
-
The Hacker News
SAP Patches CVSS 9.9 NetWeaver ABAP Flaw That Could Expose or Modify Data
SAP has rolled out updates to address multiple vulnerabilities as part of its July 2026 security updates, including a critical flaw in SAP NetWeaver Application Server ABAP. The vulnerability in quest ...
-
security.nl
Kritiek VMware-lek kan aanvaller toegang tot Avi-loadbalancer geven
Een kritieke kwetsbaarheid maakt het mogelijk voor ongeauthenticeerde aanvallers om toegang te krijgen tot Avi-loadbalancers. Voor het beveiligingslek, dat door een onderzoeker van het NAVO Cyber Secu ...
-
The Hacker News
RabbitMQ Flaws Could Leak OAuth Secrets and Expose Cross-Tenant Queue Metadata
Cybersecurity researchers have disclosed details of two access control-related flaws impacting the RabbitMQ message broker service that could allow attackers to leak OAuth client secrets, expose enter ...
-
The Hacker News
11 Old Microsoft-Signed Linux UEFI Shims Could Let Attackers Bypass Secure Boot
Cybersecurity researchers have discovered 11 old, Microsoft-signed, Unified Extensible Firmware Interface (UEFI) applications that could be abused to bypass Secure Boot on most systems using the moder ...
-
security.nl
VS meldt misbruik van 18 jaar oud beveiligingslek in Cisco-routers
Een 18 jaar oude kwetsbaarheid in Cisco-routers is misbruikt bij aanvallen, zo waarschuwt het Amerikaanse cyberagentschap CISA. Het cross-site request forgery (CSRF)-lek in de webinterface, aangeduid ...
-
The Hacker News
U.S. Sanctions First VPN Service and Malware Cryptor Seller Over Ransomware Support
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has designated two individuals and a VPN service provider for enabling ransomware actors' and other cybercriminals' malicious act ...
-
The Cyber Express
RabbitMQ Vulnerability Exposes OAuth Secrets to Attackers
A newly disclosed RabbitMQ vulnerability, tracked as CVE-2026-5721, has raised concerns among enterprise users after researchers revealed that the flaw could allow unauthenticated attackers to retriev ...
-
Krypt3ia
Threat Intelligence Report: JADEPUFFER Agentic Ransomware and Automated Extortion
Report date: July 13, 2026Threat type: Agentic ransomware, destructive extortion, cloud and application compromiseActivity status: EmergingAttribution: UnattributedConfidence: ModeratePrimary source: ...
-
The Hacker News
⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and More
Somewhere right now, a security tool is quietly finding bugs faster than any human can fix them. That's supposed to be the good news. The catch is that the attackers have the same tools, pointed the o ...