CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
100+ Cisco Secure Email Devices Exposed to Zero‑Day Exploited in the Wild
Security researchers have identified at least 120 Cisco Secure Email Gateway and Cisco Secure Email and Web Manager devices vulnerable to a critical zero-day flaw that attackers are actively exploitin ...
-
Daily CyberSecurity
PoC Available: Unauthenticated HPE OneView RCE (CVSS 10.0) Exploits Hidden ID Pools API
Security researchers have detailed a maximum-severity vulnerability in Hewlett Packard Enterprise’s (HPE) OneView software, revealing how a seemingly obscure feature could allow unauthenticated attack ...
-
CybersecurityNews
Hackers Weaponize SVG Files and Office Documents to Target Windows Users
Cybersecurity researchers have uncovered a sophisticated email campaign deploying a commodity loader to distribute Remote Access Trojans and information stealers. The operation primarily targets manuf ...
-
TheCyberThrone
CVE-2025-14733: Critical WatchGuard Firebox RCE Actively Exploited
OverviewCVE-2025-14733 is a critical remote code execution (RCE) vulnerability in WatchGuard Fireware OS that allows unauthenticated attackers to take over Firebox firewall appliances via IKEv2 VPN fu ...
-
The Cyber Express
Sophisticated Attack Campaign Exposes Loader Used by Multiple Threat Actors
Cyble researchers have identified a sophisticated attack campaign that uses obfuscation, a unique User Account Control (UAC) bypass and other stealthy techniques to deliver a unified commodity loader ...
-
The Register
WatchGuard sounds alarm as critical Firebox flaw comes under active attack
WatchGuard is in emergency patch mode after confirming that a critical remote code execution flaw in its Firebox firewalls is under active attack. In an advisory published this week, the network secur ...
-
CybersecurityNews
25,000+ FortiCloud SSO-Enabled Devices Exposed to Remote Attacks
Over 25,000 Fortinet devices worldwide with FortiCloud Single Sign-On (SSO) enabled, leaving them potentially exposed to remote attacks. The finding stems from enhanced device fingerprinting in a new ...
-
CybersecurityNews
Apache Log4j Vulnerability Allow Attackers to Intercept Sensitive Log Data
Apache Logging Services has disclosed a critical security vulnerability in Log4j Core that exposes applications to potential interception of log data. The flaw resides in the Socket Appender component ...
-
The Cyber Express
CL0P Ransomware Group Targets Gladinet CentreStack in New Campaign
The CL0P ransomware group appears to be targeting internet-facing Gladinet CentreStack file servers in its latest extortion campaign. The Curated Intelligence project said in a LinkedIn post that inci ...
-
BleepingComputer
New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock
The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memory access (DMA) attacks that can bypass early-boot memory protections. The securi ...