CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Hackers Weaponize SVG Files and Office Documents to Target Windows Users
Cybersecurity researchers have uncovered a sophisticated email campaign deploying a commodity loader to distribute Remote Access Trojans and information stealers. The operation primarily targets manuf ...
-
TheCyberThrone
CVE-2025-14733: Critical WatchGuard Firebox RCE Actively Exploited
OverviewCVE-2025-14733 is a critical remote code execution (RCE) vulnerability in WatchGuard Fireware OS that allows unauthenticated attackers to take over Firebox firewall appliances via IKEv2 VPN fu ...
-
The Register
WatchGuard sounds alarm as critical Firebox flaw comes under active attack
WatchGuard is in emergency patch mode after confirming that a critical remote code execution flaw in its Firebox firewalls is under active attack. In an advisory published this week, the network secur ...
-
CybersecurityNews
25,000+ FortiCloud SSO-Enabled Devices Exposed to Remote Attacks
Over 25,000 Fortinet devices worldwide with FortiCloud Single Sign-On (SSO) enabled, leaving them potentially exposed to remote attacks. The finding stems from enhanced device fingerprinting in a new ...
-
CybersecurityNews
Apache Log4j Vulnerability Allow Attackers to Intercept Sensitive Log Data
Apache Logging Services has disclosed a critical security vulnerability in Log4j Core that exposes applications to potential interception of log data. The flaw resides in the Socket Appender component ...
-
BleepingComputer
New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock
The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memory access (DMA) attacks that can bypass early-boot memory protections. The securi ...
-
CybersecurityNews
Cloud Atlas Hacker Group Exploiting Office Vulnerabilities to Execute Malicious Code
The Cloud Atlas advanced persistent threat group has continued its sophisticated campaign targeting organizations across Eastern Europe and Central Asia during the first half of 2025, leveraging outda ...
-
BleepingComputer
Over 25,000 FortiCloud SSO devices exposed to remote attacks
Internet security watchdog Shadowserver has found over 25,000 Fortinet devices exposed online with FortiCloud SSO enabled, amid ongoing attacks targeting a critical authentication bypass vulnerability ...
-
security.nl
25.000 Fortinet-apparaten met FortiCloud SSO toegankelijk vanaf internet
Zeker 25.000 Fortinet-apparaten met FortiCloud SSO, waarvan bijna vierhonderd in Nederland, zijn toegankelijk vanaf het internet en lopen daarmee risico om te worden aangevallen, aldus The Shadowserve ...
-
The Register
HPE tells customers to patch fast as OneView RCE bug scores a perfect 10
Hewlett Packard Enterprise has told customers to drop whatever they're doing and patch OneView after admitting a maximum-severity bug could let attackers run code on the management platform without so ...