CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models
Aug 09, 2025Ravie LakshmananVulnerability / Hardware Security Cybersecurity researchers have uncovered multiple security flaws in Dell's ControlVault3 firmware and its associated Windows APIs that c ... Read more
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
WinRAR Zero-Day CVE-2025-8088 Exploited to Spread RomCom Malware
Critical WinRAR flaw CVE-2025-8088 exploited by Russia-linked hackers to spread RomCom malware, update to version 7.13 now to stay protected. Learn how a Russia-linked group is using this vulnerabilit ... Read more
-
CybersecurityNews
New Linux Kernel Vulnerability Directly Exploited from Chrome Renderer Sandbox Via Rare Linux Socket Feature
August 9, 2025 — A critical vulnerability in the Linux kernel, identified as CVE-2025-38236, has exposed a flaw that could allow attackers to escalate privileges from within the Chrome renderer sandbo ... Read more
-
CrowdStrike.com
CrowdStrike Falcon Prevents Supply Chain Attack Involving Compromised NPM Packages
Recently, five popular NPM (Node Package Manager) packages were compromised and modified to deliver a malicious DLL, dubbed “Scavenger”. The malware pushed via these compromised NPM packages executes ... Read more
-
security.nl
'28.000 Microsoft Exchange-servers missen belangrijke noodpatch'
Meer dan 28.000 Microsoft Exchange-servers, waarvan bijna zeshonderd in Nederland, missen een belangrijke noodpatch die afgelopen woensdag werd uitgebracht. Dat laat The Shadowserver Foundation op bas ... Read more
-
TheCyberThrone
CVE-2025-53652 impacts Jenkins Git
August 9, 2025OverviewCVE-2025-53652 is a vulnerability discovered in the Jenkins Git Parameter Plugin, which is widely used to provide dynamic parameterized build options in Jenkins jobs.This flaw al ... Read more
-
security.nl
WinRAR dicht path traversal-lek actief gebruikt bij aanvallen
Een kwetsbaarheid in de populaire archiveringssoftware WinRAR is actief gebruikt bij aanvallen voordat er een beveiligingsupdate beschikbaar was. Inmiddels is er wel een patch voorhanden en worden geb ... Read more
-
CrowdStrike.com
CrowdStrike Falcon Prevents Supply Chain Attack Involving Compromised NPM Packages
Recently, five popular NPM (Node Package Manager) packages were compromised and modified to deliver a malicious DLL, dubbed “Scavenger”. The malware pushed via these compromised NPM packages executes ... Read more
-
The Hacker News
CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials
Cybersecurity researchers have discovered over a dozen vulnerabilities in enterprise secure vaults from CyberArk and HashiCorp that, if successfully exploited, can allow remote attackers to crack open ... Read more
-
CrowdStrike.com
CrowdStrike Falcon Prevents Supply Chain Attack Involving Compromised NPM Packages
Recently, five popular NPM (Node Package Manager) packages were compromised and modified to deliver a malicious DLL, dubbed “Scavenger”. The malware pushed via these compromised NPM packages executes ... Read more