Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Windows 11 25H2 Update: Minor Changes Expected in October 2025
Microsoft now schedules major version updates for Windows 11 every October, with the upcoming release set for October 2025—namely, Windows 11 version 25H2. References to this version have already begu ... Read more
-
InfoSec Write-ups
Rack::Static Vulnerability Exposes Ruby Servers to Data Breaches!
Hold onto your keyboards, Ruby developers! 😱 A critical security flaw in the Rack::Static middleware has been uncovered, potentially leaving Ruby-based web servers vulnerable to data breaches. Dubbed ... Read more
-
Cyber Security News
400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks that Exploited in the Wild
Shadow Servers have identified 454 SAP NetWeaver systems vulnerable to a critical zero-day vulnerability that has been actively exploited in the wild. The vulnerability, tracked as CVE-2025-31324, all ... Read more
-
Daily CyberSecurity
Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public
Image: Chocapikk_ Security researcher Chocapikk has published a Metasploit module for a critical zero-day vulnerability impacting Craft CMS, tracked as CVE-2025-32432 (CVSS 10). This remote code execu ... Read more
-
Daily CyberSecurity
CISA Warns of Critical Vulnerabilities in Planet Technology Products
CISA has issued a new security advisory highlighting critical vulnerabilities impacting several Planet Technology products, including UNI-NMS-Lite, NMS-500, NMS-1000V, WGS-804HPT-V2, and WGS-4215-8T2S ... Read more
-
Daily CyberSecurity
Critical Flaw Exposes Linux Security Blind Spot: io_uring Bypasses Detection
ARMO researchers have uncovered a critical weakness in Linux runtime security tools, revealing how the io_uring interface enables rootkits to operate undetected by conventional monitoring solutions. T ... Read more
-
Daily CyberSecurity
React Router Vulnerabilities CVE-2025-43864 and CVE-2025-43865 Expose Web Applications to Attack
The React Router team has issued the advisory addressing two vulnerabilities affecting applications running in Framework mode: CVE-2025-43864 and CVE-2025-43865. Given React Router’s widespread usage ... Read more
-
Daily CyberSecurity
CVE-2025-23016: Critical FastCGI Heap Overflow Threatens Embedded Devices, PoC Releases
Security researcher Baptiste Mayaud from Synacktiv has detailed a critical vulnerability in the FastCGI library, tracked as CVE-2025-23016 (CVSS 9.4). The flaw, which stems from improper handling of p ... Read more
-
Daily CyberSecurity
Multiple Vulnerabilities in NETSCOUT nGeniusONE Threaten Infrastructure Visibility Platforms
NETSCOUT has issued a advisory addressing a series of security vulnerabilities in its flagship infrastructure monitoring platform, nGeniusONE. NETSCOUT’s nGeniusONE solution is a powerful tool, provid ... Read more
-
Trend Micro
NVIDIA Riva Vulnerabilities Leave AI-Powered Speech and Translation Services at Risk
Summary: Trend Micro Research discovered a pattern of exposed NVIDIA Riva API endpoints across multiple organizations deploying Riva in cloud environments. These exposed instances were found operating ... Read more