CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Clop extortion emails claim theft of Oracle E-Business Suite data
Mandiant and Google are tracking a new extortion campaign where executives at multiple companies received emails claiming that sensitive data was stolen from their Oracle E-Business Suite systems Acco ... Read more
-
Daily CyberSecurity
Qualcomm Wins “Complete Victory” Over Arm in Major Chip Licensing Lawsuit
The long-standing licensing dispute between Qualcomm and Arm has finally reached its conclusion. On October 1, a U.S. District Court formally dismissed Arm’s last remaining lawsuit against Qualcomm, e ... Read more
-
Daily CyberSecurity
Critical Flaw in Termix Docker Image (CVE-2025-59951) Leaks SSH Credentials Without Authentication
The Termix project has disclosed a critical authentication bypass vulnerability in its official Docker image, exposing sensitive SSH configuration data without requiring user login. Tracked as CVE-202 ... Read more
-
Daily CyberSecurity
Chrome 141 Stable Channel Update Patches High-Severity Vulnerabilities (CVE-2025-11205 & CVE-2025-11206)
The Chrome security team has announced the promotion of Chrome 141 to the Stable Channel for Windows, Mac, and Linux. The release—version 141.0.7390.54 for Linux and 141.0.7390.54/55 for Windows and M ... Read more
-
Daily CyberSecurity
Critical Flaw CVE-2025-52906 (CVSS 9.3) Allows Unauthenticated RCE on TOTOLINK X6000R Routers
Researchers from Unit 42, Palo Alto Networks’ threat intelligence team, have disclosed three newly discovered vulnerabilities in the firmware of the TOTOLINK X6000R router, version V9.4.0cu.1360_B2024 ... Read more
-
Daily CyberSecurity
Splunk Fixes Six Flaws, Including Unauthenticated SSRF and XSS Vulnerabilities in Enterprise Platform
Splunk has released a series of security advisories addressing six vulnerabilities in Splunk Enterprise and Splunk Cloud Platform, ranging from medium to high severity. The flaws span improper access ... Read more
-
Daily CyberSecurity
Django Security Alert: High-Severity SQL Injection Flaw (CVE-2025-59681) Fixed in Latest Updates
The Django team has issued new security releases for the popular Python web framework, addressing two vulnerabilities that could lead to SQL injection and directory traversal attacks. The patched vers ... Read more
-
Daily CyberSecurity
DoS Flaws in Argo CD: Unauthenticated Attackers Can Crash Kubernetes Server with Single Request
The Argo CD project has released patches addressing several denial-of-service (DoS) vulnerabilities that could allow attackers to crash the argocd-server process with a single unauthenticated HTTP req ... Read more
-
Daily CyberSecurity
CISA Warns of Critical RCE Flaw (CVE-2025-10659, CVSS 9.8) in Megasys Telenium Online Web Application
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a security advisory warning of a critical vulnerability in the Megasys Telenium Online Web Application that could lead to re ... Read more
-
Ars Technica
That annoying SMS phish you just got may have come from a box like this
The researchers added: “This campaign is notable in that it demonstrates how impactful smishing operations can be executed using simple, accessible infrastructure. Given the strategic utility of such ... Read more