CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance
Cybersecurity researchers have warned of a "resurgence and expansion" of JDY, a covert network associated with China-nexus state-sponsored threat actors. "The JDY botnet comprises over 1,500 SOHO [sma ...
-
The Hacker News
Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities
Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities that could result in arbitrary code execution and information disclosure. The security fl ...
-
The Hacker News
Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE
A high-severity unpatched security flaw in Langflow, an open-source low-code platform to build artificial intelligence (AI) applications, has come under active exploitation in the wild, according to f ...
-
The Hacker News
CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitati ...
-
security.nl
Microsoft komt met update voor actief aangevallen XSS-lek in Exchange Server
Microsoft heeft een beveiligingsupdate uitgebracht voor een actief aangevallen cross-site scripting (XSS) lek in Exchange Server en roept organisaties en beheerders op om de patch zo snel mogelijk te ...
-
security.nl
OpenSSL-lek gevonden met AI kan mogelijk tot remote code execution leiden
Een beveiligingsonderzoeker heeft met behulp van AI een kwetsbaarheid in OpenSSL gevonden die in bepaalde gevallen mogelijk tot remote code execution kan leiden, zo laat het ontwikkelteam weten. Er zi ...
-
security.nl
NCSC verwacht misbruik Ivanti-lekken na blogpost cybersecuritybedrijf
Het Nationaal Cyber Security Centrum (NCSC) verwacht dat aanvallers misbruik zullen maken van kritieke kwetsbaarheden in Ivanti Sentry nadat cybersecuritybedrijf watchTowr een blogpost met details ove ...
-
cert.pl
Vulnerability in Aix-DB software
Vulnerability in Aix-DB software CVE ID CVE-2026-8335 Publication date 10 June 2026 Vendor Aix-DB Product Aix-DB Vulnerable versions All through 1.2.4 Vulnerability type (CWE) Missing Authentication f ...
-
The Hacker News
Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs
Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release. Of the 2 ...
-
security.nl
Microsoft dicht Windows-kernel remote code execution-lek en BitLocker-bypass
Tijdens de patchdinsdag van juni heeft Microsoft updates voor meer dan tweehonderd kwetsbaarheden uitgebracht, waaronder een beveiligingslek in de Windows-kernel waardoor remote code execution mogelij ...