CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Critical Wget2 Flaws Expose Users to Arbitrary File Overwrites and Memory Crashes
GNU Wget2, the modern successor to the ubiquitous command-line download tool, has been hit with a double whammy of security disclosures. Two newly identified vulnerabilities—one involving a treacherou ...
-
Daily CyberSecurity
CVE-2025-68926: Critical Hardcoded Credential Flaw Exposes RustFS Storage Clusters
RustFS, a distributed object storage system celebrated for leveraging the memory safety and performance of the Rust programming language, has stumbled over a decidedly old-school security hurdle. A cr ...
-
BleepingComputer
The biggest cybersecurity and cyberattack stories of 2025
2025 was a big year for cybersecurity, with major cyberattacks, data breaches, threat groups reaching new notoriety levels, and, of course, zero-day vulnerabilities exploited in incidents. Some storie ...
-
The Hacker News
ThreatsDay Bulletin: GhostAd Drain, macOS Attacks, Proxy Botnets, Cloud Exploits, and 12+ Stories
The first ThreatsDay Bulletin of 2026 lands on a day that already feels symbolic — new year, new breaches, new tricks. If the past twelve months taught defenders anything, it's that threat actors don' ...
-
CybersecurityNews
Top 10 High-Risk Vulnerabilities Of 2025 that Exploited in the Wild
The cybersecurity landscape in 2025 has been marked by an unprecedented surge in critical vulnerabilities, with over 21,500 CVEs disclosed in the first half of the year alone, representing a 16-18% in ...
-
TheCyberThrone
CVE-2025-52691: Critical Unauthenticated RCE in SmarterMail
January 1, 2026SmarterMail servers running builds prior to 9413 expose organizations to unauthenticated arbitrary file upload leading to remote code execution. Attackers can drop web shells anywhere o ...
-
The Hacker News
RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers
Jan 01, 2025Ravie LakshmananNetwork Security / Vulnerability Cybersecurity researchers have disclosed details of a persistent nine-month-long campaign that has targeted Internet of Things (IoT) devi ...
-
Daily CyberSecurity
Apache NuttX RTOS Patches Two Filesystem Flaws
The Apache Software Foundation has released updates for Apache NuttX, a real-time operating system (RTOS) widely used in environments ranging from 8-bit to 64-bit microcontrollers. The alerts highligh ...
-
Daily CyberSecurity
Hijacked Mobility: CISA Warns of Critical 9.8 Flaw Allowing Remote Control of WHILL Power Chairs
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory regarding a critical safety vulnerability in popular electric mobility devices that could turn a user’s wheelchair in ...
-
Daily CyberSecurity
The $130 Billion Comeback: Why Apple’s “Slow” AI Strategy is a 2026 Trap
Although Apple’s 2025 software updates appeared to shift the marketing spotlight toward the “Liquid Glass” visual interface rather than loudly championing generative AI—prompting criticism that the co ...