CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Livewire Vulnerability Exposes Millions of Laravel Apps to Remote Code Execution Attacks
A critical security vulnerability in Laravel’s Livewire framework has been discovered that could expose millions of web applications to remote code execution (RCE) attacks. The flaw, designated as CVE ... Read more
-
CrowdStrike.com
July 2025 Patch Tuesday: One Publicly Disclosed Zero-Day and 14 Critical Vulnerabilities Among 137 CVEs
Microsoft has addressed 137 vulnerabilities in its July 2025 security update release, more than double the number of vulnerabilities in June. This month's patches include fixes for one publicly disclo ... Read more
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
New GhostContainer Malware Hits High-Value MS Exchange Servers in Asia
Cybersecurity researchers at Kaspersky’s research unit SecureList have revealed a new and highly customized malware, dubbed GhostContainer. This sophisticated backdoor has been found actively targetin ... Read more
-
The Register
Microsoft patches under-attack SharePoint 2019 and SE
Microsoft is releasing out-of-band security updates for SharePoint Server 2019 and SharePoint Server Subscription Edition, following a warning that vulnerable versions were now under attack. If AMSI c ... Read more
-
security.nl
HPE Aruba access points kwetsbaar door hardcoded wachtwoord
Aruba access points van Hewlett Packard Enterprise (HPE) zijn kwetsbaar vanwege de aanwezigheid van een hardcoded wachtwoord, zo laat de fabrikant weten. Die heeft een update uitgebracht om het proble ... Read more
-
CybersecurityNews
HPE Warns of Aruba Hardcoded Credentials Allowing Attackers to Bypass Device Authentication
A critical vulnerability in Hewlett Packard Enterprise (HPE) Aruba Networking Instant On Access Points could allow attackers to bypass device authentication mechanisms completely. The vulnerability, t ... Read more
-
cert.pl
Vulnerability in FARA software
Vulnerability in FARA software CVE ID CVE-2025-4049 Publication date 21 July 2025 Vendor SIGNUM-NET Product FARA Vulnerable versions All through 5.0.80.34 Vulnerability type (CWE) Use of Hard-coded Cr ... Read more
-
The Cyber Express
CrushFTP Servers Hit by Critical Zero-Day Vulnerability CVE-2025-54309
A new zero-day vulnerability in CrushFTP file transfer servers is being actively exploited by cybercriminals, compromising systems around the world. Tracked as CVE-2025-54309, the CrushFTP zero-day vu ... Read more
-
security.nl
CrushFTP meldt actief misbruik van kritiek beveiligingslek
De makers van ftp-serversoftware CrushFTP waarschuwen voor actief misbruik van een kritieke kwetsbaarheid waardoor aanvallers op afstand toegang tot kwetsbare servers kunnen krijgen. Misbruik is sinds ... Read more
-
Daily CyberSecurity
Apple’s Foldable iPhone Coming 2026: “Not the First, But the Best” Strategy Aims for China Reboot
Bloomberg journalist Mark Gurman has once again reported that Apple plans to unveil its first foldable iPhone in 2026. Although this timeline places Apple behind Samsung and several Chinese brands tha ... Read more