Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Windows 11 Privilege Escalation Flaws Uncovered: CVE-2025-24076 and CVE-2025-24994
Image: John Ostrowski In a revealing security analysis, Compass Security researcher John Ostrowski has disclosed two privilege escalation vulnerabilities in Microsoft Windows—CVE-2025-24076 and CVE-20 ... Read more
-
Daily CyberSecurity
PasivRobber: In-Depth Analysis of Sophisticated macOS Malware
A recent discovery by Kandji’s research team has brought to light a sophisticated threat targeting macOS systems: a suite of applications dubbed “PasivRobber.” The initial discovery on VirusTotal of a ... Read more
-
Daily CyberSecurity
Critical RCE Vulnerability Affects HylaFAX and AvantFAX
A recent security advisory from iFAX Solutions has revealed a critical vulnerability affecting the HylaFAX Enterprise Web Interface and AvantFAX. The vulnerability, identified as CVE-2025-1782, stems ... Read more
-
Daily CyberSecurity
BPFDoor Backdoor Used in Asia, Middle East Cyberespionage
A recent report by Trend Micro has uncovered a stealthy, state-sponsored backdoor called BPFDoor, which has been linked to cyberespionage activities across Asia and the Middle East. The investigation, ... Read more
-
The Register
Uncle Sam abruptly turns off funding for CVE program. Yes, that CVE program
US government funding for the world's CVE program – the centralized Common Vulnerabilities and Exposures database of product security flaws – ends Wednesday. The 25-year-old CVE program plays a huge r ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more
-
CrowdStrike.com
April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs
Microsoft has addressed 121 vulnerabilities in its April 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and 11 Critical vulnerabilit ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more
-
CrowdStrike.com
April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs
Microsoft has addressed 121 vulnerabilities in its April 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and 11 Critical vulnerabilit ... Read more
-
Dark Reading
Max Severity Bug in Apache Roller Enabled Persistent Access
Source: Piotr Swat va ShutterstockThe maintainers of the Apache Roller open source blogging platform patched a maximum severity bug that allowed continued access to the app even after a user changed t ... Read more