CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
New wp2shell WordPress Core Flaw Lets Unauthenticated Attackers Run Code
An anonymous HTTP request can run code on a WordPress site. The bug is in core, so a bare install with zero plugins is exploitable. Every 6.9 and 7.0 site was in range until Friday, when WordPress shi ...
-
The Hacker News
OpenSSL HollowByte Flaw Could Freeze Server Memory with 11-Byte TLS Requests
Eleven bytes will make an unpatched OpenSSL server set aside up to 131 KB of memory for a message that never arrives. On the glibc systems Okta tested, that memory is gone until the process restarts. ...
-
The Cloudflare Blog
Cloudflare WAF protects WordPress applications from two high-severity vulnerabilities
July 17, 20263 minute readCloudflare has deployed new Web Application Firewall (WAF) protections for two critical vulnerabilities affecting WordPress. The protections address an Unauthenticated Remote ...
-
The Hacker News
New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens
A Go botnet called NadMesh turned up in early July hunting exposed AI services, and the operator's own dashboard claims 3,811 unique AWS keys. A Shodan harvester keeps the scan queue stocked with Comf ...
-
The Cyber Express
The Cyber Express Weekly Roundup: TikTok Age Verification Probe, Healthcare Data Breach, Qantas Ruling, and Major Cyberattacks
This week’s cybersecurity roundup highlights growing concerns around online child safety, healthcare data protection, supply chain risks, and cyber threats affecting organizations worldwide. From regu ...
-
security.nl
'Nederland telt tweeduizend IP-camera's met bekend misbruikt beveiligingslek'
Nederland telt zo'n tweeduizend IP-camera's die kwetsbaarheden bevatten waarvan bekend is dat aanvallers er misbruik van maken, zo stelt cybersecuritybedrijf Censys op basis van eigen onderzoek. Onlan ...
-
security.nl
VS meldt voor het eerst misbruik van Fortinet FortiSandbox-lekken
Aanvallers maken actief misbruik van twee kritieke kwetsbaarheden in Fortinet FortiSandbox en dat is voor het eerst, aldus het Amerikaanse cyberagentschap CISA. De Fortinet FortiSandbox is een server ...
-
The Cyber Express
Critical Notepad++ Bugs Could Lead to Code Execution, Patch Available
The latest Notepad++ vulnerabilities addressed in version 8.9.7 include several high-impact security flaws that could expose Windows systems to arbitrary code execution, file overwrite attacks, memory ...
-
security.nl
Microsoft meldt alsnog actief misbruik van kritiek SharePoint-lek
Een kritieke kwetsbaarheid in Microsoft SharePoint waardoor aanvallers SharePoint-servers op afstand kunnen overnemen is toch wel actief bij aanvallen misbruikt voordat een beveiligingsupdate beschikb ...
-
The Hacker News
CISA Adds Exploited SharePoint RCE Zero-Day CVE-2026-58644 to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly patched security flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) cata ...