CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Krypt3ia
Threat Report: Ukraine as Russia’s Downrange Cyber-Warfare Target and Europe’s Emerging Exposure
TLP:CLEAR Analytic confidence: High for the strategic pattern, high for Russia-state linkage, medium for some specific cluster-level attribution, especially the Poland 2025 energy incident. Executive ...
-
security.nl
Duizenden Joomla-websites bevatten actief misbruikt RCE-lek in JCE-editor
Duizenden Joomla websites die gebruikmaken van de Joomla Content Editor (JCE) bevatten een kritieke kwetsbaarheid waar aanvallers actief misbruik van maken en ervoor zorgt dat sites volledig zijn over ...
-
cert.pl
Vulnerability in DRIMO CMS software
Vulnerability in DRIMO CMS software CVE ID CVE-2026-11772 Publication date 23 June 2026 Vendor DRIMO Product DRIMO CMS Vulnerable versions All through 1.0 Vulnerability type (CWE) Improper Neutralizat ...
-
security.nl
Kritiek beveiligingslek in FFmpeg maakt remote code execution mogelijk
Een kritieke kwetsbaarheid in het zeer veelgebruikte 'multimedia framework' FFmpeg maakt remote code execution mogelijk als er een speciaal geprepareerd mediabestand wordt verwerkt. In het geval van b ...
-
cert.pl
Vulnerability in Totolink EX1200L router software
Vulnerability in Totolink EX1200L router software CVE ID CVE-2026-44089 Publication date 23 June 2026 Vendor Totolink Product EX1200L Vulnerable versions 9.3.5u.6146_B20201023 Vulnerability type (CWE) ...
-
The Hacker News
OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
OpenAI on Monday said it's releasing an improved version of its GPT‑5.5‑Cyber model to trusted defenders as part of the Daybreak initiative the artificial intelligence (AI) company announced last mont ...
-
Trend Micro
From Langflow to Monero: Inside CVE-2026-33017 Cryptominer
Introduction This cryptocurrency-mining campaign shows how exposed AI application endpoints are becoming another route into enterprise environments. The payload might be familiar, but the delivery vec ...
-
The Hacker News
ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack
Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack after unknown threat actors managed to tamper with the official release channels and push backdoor code. "Attacke ...
-
The Hacker News
Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants
Cybersecurity researchers have disclosed details of four vulnerabilities in Dify, an open-source agentic workflow platform with more than 146,000 GitHub stars, that could allow attackers to stealthily ...
-
The Hacker News
29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests
A heap over-read in the Squid web proxy can leak another user's cleartext HTTP request, including any credentials or session tokens it carries, to anyone already allowed to send traffic through the sa ...