CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
RondoDox Botnet Expands to 174 Exploits, Leveraging Residential IP Infrastructure at Scale
A newly tracked botnet called RondoDox has quietly built itself into one of the more concerning threats observed in recent months, combining an unusually large collection of exploits with a calculated ...
-
The Hacker News
⚡ Weekly Recap: Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & More
Some weeks in security feel normal. Then you read a few tabs and get that immediate “ah, great, we’re doing this now” feeling. This week has that energy. Fresh messes, old problems getting sharper, an ...
-
Daily CyberSecurity
The Poisoned Pickle: Critical Unpatched RCE Flaws Expose SGLang AI Infrastructure
Security researchers have issued a warning to the AI development community following the discovery of critical vulnerabilities in SGLang, a popular open-source serving framework for Large Language Mod ...
-
Google Cloud
Ransomware Under Pressure: Tactics, Techniques, and Procedures in a Shifting Threat Landscape
Written by: Bavi Sadayappan, Zach Riddle, Ioana Teaca, Kimberly Goody, Genevieve Stark Introduction Since 2018, when many financially motivated threat actors began shifting their monetization strategy ...
-
Daily CyberSecurity
Critical 9.7 CVSS TinaCMS Flaw Exposes Local Developer Machines
Security researchers have exposed a devastating vulnerability in TinaCMS, a popular headless content management system used by developers globally to manage Markdown and MDX content. The flaw, tracked ...
-
cert.pl
Vulnerabilities in Raytha software
Vulnerabilities in Raytha software CVE ID CVE-2025-15540 Publication date 16 March 2026 Vendor Raytha Product Raytha Vulnerable versions All before 1.4.6 Vulnerability type (CWE) Improper Control of G ...
-
Daily CyberSecurity
High-Severity Flaw Exposes LiteSpeed Web Servers to OS Command Injection
A significant security warning has been issued for administrators utilizing LiteSpeed Web Server, a popular high-performance replacement for Apache. According to a vulnerability note from JPCERT/CC, a ...
-
Daily CyberSecurity
Critical 10.0 CVSS SandboxJS Flaw Grants Complete Remote Code Execution
A severe security flaw has been identified in SandboxJS, a popular JavaScript sandboxing library used to safely execute untrusted code within web and Node.js applications. The vulnerability, tracked a ...
-
cert.pl
Vulnerabilities in multiple tinycontrol devices
Vulnerabilities in multiple tinycontrol devices CVE ID CVE-2025-11500 Publication date 16 March 2026 Vendor tinycontrol Product tcPDU and LAN Controllers: LK3.5, LK3.9 and LK4 Vulnerable versions Befo ...
-
The Cyber Express
China Demands Proof After Costa Rica Blames UNC2814 for ICE Cyberattack
Tensions between China and Costa Rica have intensified following allegations tied to an ICE cyberattack that Costa Rican authorities say was linked to the cyberespionage group UNC2814. The dispute cen ...