CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
The iOS 26.2 Trap: New WebKit Integer Overflow Discovered with PoC—Is Your iPhone at Risk?
Security researcher Joseph Goydish has identified a critical vulnerability within Apple’s WebKit engine, exposing a flaw that could potentially allow attackers to crash browsers or—if chained with oth ...
-
Daily CyberSecurity
PoC Released: MongoBleed Exploit Allows Unauthenticated Attackers to Drain MongoDB Memory
Database administrators are facing a critical security emergency after the disclosure of a high-severity vulnerability in MongoDB, one of the industry’s most widely used database systems. The flaw, tr ...
-
Daily CyberSecurity
Holiday ColdFusion Attacks Reveal Massive 2.5 Million Request Onslaught
What started as a seemingly targeted holiday raid on Adobe ColdFusion servers has unraveled into a sprawling, industrial-scale cyberattack operation. A new intelligence update from GreyNoise reveals t ...
-
Daily CyberSecurity
“Headphone Jacking”: Critical Flaws in Popular Earbuds Let Hackers Hijack Your Phone
Your Bluetooth headphones might be doing more than just playing your favorite tunes—they could be handing over the keys to your digital life. A new report from ERNW Enno Rey Netzwerke GmbH has exposed ...
-
Daily CyberSecurity
CVE-2025-54322 (CVSS 10): AI Agents Uncover Critical Zero-Day in Global Networking Gear
A swarm of autonomous AI agents has successfully discovered a critical, unpatched vulnerability in networking gear used across the globe. A new report from pwn.ai details the discovery of a pre-authen ...
-
Daily CyberSecurity
“Prefix Swap” Panic: Sophisticated “Jackson” Imposter Infiltrates Maven Central
The Java ecosystem, long considered a fortress compared to the wild west of npm, has been breached by a novel and highly sophisticated supply chain attack. A new report from Aikido Security reveals th ...
-
Daily CyberSecurity
The $70 Chip War: Why Google is Firing Execs and Apple is Bracing for a 230% Price Surge
At present, technology companies are dispatching an increasing number of employees to South Korea to negotiate with memory chip suppliers. These firms are not limited to Google and Microsoft; they als ...
-
BleepingComputer
Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the ...
-
TheCyberThrone
Patching Became A Race in 2025: Microsoft Security Reckoning
Microsoft’s Patch Tuesday releases in 2025 tell a clear and sobering story: record-breaking vulnerability volume, sustained zero-day exploitation, and a decisive attacker shift toward privilege escala ...
-
CybersecurityNews
MongoBleed (CVE-2025-14847) Now Exploited in the Wild: MongoDB Servers at Critical Risk
A high-severity unauthenticated information-leak vulnerability in MongoDB Server, dubbed MongoBleed after the infamous Heartbleed bug, is now being actively exploited in real-world attacks. MongoDB ha ...