CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Patch Now: Dell UnityVSA Flaw Allows Command Execution Without Login
Cybersecurity researchers at WatchTowr have published their analysis revealing a vulnerability in Dell UnityVSA, tracked as CVE-2025-36604. The flaw allows an attacker with no authentication to issue ...
-
DataBreaches.Net
Update on the emerging CL0P extortion campaign targeting Oracle E-Business Suite
UPDATE: On the emerging CL0P extortion campaign targeting Oracle E-Business Suite (EBS) customers, we can now confirm the actor likely exploited a zero-day vulnerability (CVE-2025-61882) to steal data ...
-
The Register
Clop crew hits Oracle E-Business Suite users with fresh zero-day
Oracle rushed out an emergency fix over the weekend for a zero-day vulnerability in its E-Business Suite (EBS) that criminal crew Clop has already abused for data theft and extortion. The flaw, tracke ...
-
security.nl
Zimbra XSS-lek werd misbruikt bij aanvallen voordat update beschikbaar was
maandag 6 oktober 2025, 10:49 door Redactie, 0 reactiesLaatst bijgewerkt: Vandaag, 11:38 Een kritieke cross-site scripting (XSS)-kwetsbaarheid in de Zimbra-webmailclient is actief gebruikt bij aanvall ...
-
The Cyber Express
Unity Warns Developers of Security Vulnerability Affecting Games on Android, Windows, and Linux Platforms
A recently disclosed security vulnerability in Unity has prompted security updates and, in some cases, game removals across platforms like Steam. The issue affects Unity versions 2017.1 and later, spa ...
-
Kaspersky
Detecting DLL hijacking with machine learning: real-world cases
Introduction Our colleagues from the AI expertise center recently developed a machine-learning model that detects DLL-hijacking attacks. We then integrated this model into the Kaspersky Unified Monito ...
-
CybersecurityNews
PoC Exploit Released for Sudo Vulnerability that Enables Attackers to Gain Root Access
A publicly available proof-of-concept (PoC) exploit has been released for CVE-2025-32463, a local privilege escalation (LPE) flaw in the Sudo utility that can grant root access under specific configur ...
-
CybersecurityNews
Redis Server Vulnerability use-after-free Vulnerability Enables Remote Code Execution
A critical use-after-free vulnerability, identified as CVE-2025-49844, has been discovered in Redis servers, enabling authenticated attackers to achieve remote code execution. This high-severity flaw ...
-
security.nl
Oracle dicht kritiek EBS-lek gebruikt voor het afpersen van klanten
Oracle heeft een noodpatch uitgebracht voor een kritieke kwetsbaarheid in Oracle E-Business Suite (EBS) die is gebruikt voor het afpersen van klanten. Via het beveiligingslek (CVE-2025-61882) kan een ...
-
CybersecurityNews
QNAP NetBak Replicator Vulnerability Let Attackers Execute Unauthorized Code
QNAP has released a security advisory detailing a vulnerability in its NetBak Replicator utility that could allow local attackers to execute unauthorized code. The flaw, identified as CVE-2025-57714, ...