Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Cyber Security News
CrushFTP HTTPS Port Vulnerability Leads to Unauthorized Access
Two critical vulnerabilities have been identified in widely used software: CrushFTP and Next.js. CrushFTP, a file transfer solution, contains a vulnerability allowing unauthorized access through stand ... Read more
-
Cyber Security News
Operation ForumTroll – APT Hackers Exploit Google Chrome Zero-Day To Bypass Sandbox Protections
In mid-March 2025, cybersecurity researchers uncovered “Operation ForumTroll,” targeting Russian media outlets and educational institutions. Victims are infected by clicking phishing links disguised a ... Read more
-
TheCyberThrone
CVE-2025-21377 NTLM Flaw Detailed out
CVE-2025-21377 is a security vulnerability in Microsoft Windows that stems from weaknesses in the implementation of the NTLM (NT LAN Manager) authentication protocol. This vulnerability exposes critic ... Read more
-
Cybersecurity News
GitLab Alert: Patch Now! XSS & Privilege Escalation Risks
GitLab has issued a security advisory, urging all users of self-managed GitLab Community Edition (CE) and Enterprise Edition (EE) to immediately upgrade to the latest versions: 17.10.1, 17.9.3, or 17. ... Read more
-
The Hacker News
EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware
Windows Security / Vulnerability The threat actor known as EncryptHub exploited a recently-patched security vulnerability in Microsoft Windows as a zero-day to deliver a wide range of malware families ... Read more
-
Cyber Security News
Critical NetApp SnapCenter Server Vulnerability Let Attackers Become an Admin User
A high-severity security vulnerability discovered in NetApp SnapCenter could allow authenticated users to gain administrative privileges on remote systems, posing significant risks to organizational d ... Read more
-
Dark Reading
New Testing Framework Helps Evaluate Sandboxes
Source: olandsfokus via Alamy Stock PhotoNEWS BRIEFOrganizations will require new ways to test the effectiveness of sandboxes as attackers improve their evasion techniques and malware rapidly evolves. ... Read more
-
Cyber Security News
DrayTek Routers Vulnerability Exploited in the Wild – Possibly Links to Reboot Loop
Multiple internet service providers worldwide are reporting widespread disruptions as DrayTek routers enter continuous reboot loops, affecting businesses and consumers alike. Security intelligence fir ... Read more
-
Dark Reading
Google Hastily Patches Chrome Zero-Day Exploited by APT
QubixStudio via Shutterstock Google on March 25 issued a patch for a Chrome browser zero-day flaw that was exploited by an advanced persistent threat (APT) actor earlier this month in one-click phishi ... Read more
-
cert.pl
Vulnerability in OXARI ServiceDesk software
CVE ID CVE-2025-1542 Publication date 26 March 2025 Vendor Infonet Projekt SA Product OXARI ServiceDesk Vulnerable versions All before 2.0.324.0 Vulnerability type (CWE) Incorrect Authorization (CWE-8 ... Read more