CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Critical Alert: Apache Kvrocks ‘RESET’ Command Flaw Grants Admin Privileges
The Apache Software Foundation has issued a critical security advisory for Apache Kvrocks, a distributed key-value NoSQL database compatible with the Redis protocol. Two significant vulnerabilities ha ...
-
Daily CyberSecurity
CISA Flags Actively Exploited OpenPLC Flaw (CVE-2021-26829)
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a new mandate for federal agencies to secure their industrial control systems following evidence of active exploitation in the wi ...
-
The Hacker News
Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages
Nov 28, 2025Ravie LakshmananMalware / Vulnerability Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain comprom ...
-
CybersecurityNews
Hackers Registered 18,000 Holiday-Themed Domains Targeting ‘Christmas,’ ‘Black Friday,’ and ‘Flash Sale’
The 2025 holiday season has unleashed an unprecedented wave of cyber threats, with attackers deploying industrialized infrastructure to exploit the global surge in online commerce. This year’s threat ...
-
security.nl
D-Link waarschuwt voor botnet dat kwetsbare NAS-systemen aanvalt
Hardwarefabrikant D-Link waarschuwt gebruikers voor een botnet dat kwetsbare NAS-systemen aanvalt en roept op tot het vervangen van apparaten die end-of-life zijn en geen beveiligingsupdates meer ontv ...
-
Daily CyberSecurity
AWS Guarantees 60-Minute Recovery Time with New Route 53 Accelerated Recovery
Earlier, a severe outage in Amazon’s cloud computing service AWS disrupted thousands of major websites, leaving users unable to access online platforms and causing significant operational losses for t ...
-
Daily CyberSecurity
Zombie Protocol: How NTLM Flaws Like CVE-2024-43451 Are Haunting 2025
A new report from Kaspersky Labs reveals that despite being over two decades old, the NTLM authentication protocol remains a critical security liability in 2025. Cybercriminals are actively exploiting ...
-
CybersecurityNews
NVIDIA DGX Spark Vulnerabilities Let Attackers Execute Malicious Code and DoS Attacks
An urgent security update for its DGX Spark AI workstation after discovering 14 vulnerabilities in the system’s firmware that could allow attackers to execute malicious code and launch denial-of-servi ...
-
cert.pl
Vulnerability in Simple SA Wirtualna Uczelnia software
Vulnerability in Simple SA Wirtualna Uczelnia software CVE ID CVE-2025-12140 Publication date 27 November 2025 Vendor Simple SA Product Wirtualna Uczelnia Vulnerable versions All before wu#2016.1.5513 ...
-
CybersecurityNews
Gitlab Patches Multiple Vulnerabilities that Enable Authentication Bypass and DoS Attacks
GitLab has released critical security updates for its Community Edition (CE) and Enterprise Edition (EE) to address multiple high-severity vulnerabilities. The patches, rolled out in versions 18.6.1, ...