CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
University of Pennsylvania confirms new data breach after Oracle hack
The University of Pennsylvania (Penn) has announced a new data breach after attackers stole documents containing personal information from its Oracle E-Business Suite servers in August. The private I ...
-
security.nl
Google brengt updates uit voor twee actief aangevallen Android-lekken
Tijdens de laatste patchronde van dit jaar heeft Google beveiligingsupdates voor Android uitgebracht, die onder andere twee actief aangevallen kwetsbaarheden verhelpen. Daarnaast is er ook een kritiek ...
-
cert.pl
Vulnerability in OpenSolution QuickCMS software
Vulnerability in OpenSolution QuickCMS software CVE ID CVE-2025-12465 Publication date 02 December 2025 Vendor OpenSolution Product QuickCMS Vulnerable versions 6.8 Vulnerability type (CWE) Improper N ...
-
Help Net Security
How a noisy ransomware intrusion exposed a long-term espionage foothold
Getting breached by two separate and likely unconnected cyber attack groups is a nightmare scenario for any organization, but can result in an unexpected silver lining: the noisier intrusion can draw ...
-
0patch.com
Microsoft Silently Patched CVE-2025-9491 - We Think Our Patch Provides More Security
Patching What You See vs. Patching What You ExecuteSummary: Trend Micro discovered that attackers have long been using a trick to hide what a Windows shortcut actually does, preventing users from seei ...
-
CybersecurityNews
Apache Struts Vulnerability Let Attackers Trigger Disk Exhaustion Attacks
A critical security flaw in Apache Struts could allow attackers to trigger disk exhaustion attacks, rendering affected systems unusable. The vulnerability, tracked as CVE-2025-64775, stems from a file ...
-
Daily CyberSecurity
Apple AI Shakeup: Giannandrea Out, Former Google Gemini Chief Amar Subramanya Hired
Apple has announced a major leadership reshuffle, confirming that Senior Vice President of Machine Learning and AI Strategy John Giannandrea will step down in the spring of next year — marking the end ...
-
The Cyber Express
Critical SQL Injection Flaw Exposes Sensitive Data in Devolutions Server
A batch of new vulnerabilities in Devolutions Server targets organizations that depend on the platform to manage privileged accounts, passwords, and sensitive authentication data. Devolutions has rele ...
-
CybersecurityNews
Google Patches Android 0-Day Vulnerabilities Exploited in the Wild
Google has released critical security updates to address multiple zero-day vulnerabilities affecting Android devices worldwide. The December 2025 security bulletin reveals that threat actors are activ ...
-
CybersecurityNews
OpenVPN Vulnerabilities Let Hackers Triggers Dos Attack and Bypass Security Checks
OpenVPN has released critical security updates for its 2.6 stable and 2.7 development branches, addressing three vulnerabilities that could lead to local denial-of-service (DoS), security bypasses, an ...