CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Chinese Salt Typhoon Infiltrated US National Guard Network for Months
A sophisticated Chinese APT group, Salt Typhoon, successfully infiltrated the US state’s Army National Guard network for nearly a year, from March 2024 to December 2024. This breach, detailed in a Dep ... Read more
-
Daily CyberSecurity
Arm’s SME2 Supercharges Mobile AI: 6x Faster Responses & On-Device Gemma 3
As AI applications at the device level continue to gain traction, with increasing complexity in tasks ranging from photography and voice recognition to video processing and interaction with AI assista ... Read more
-
Daily CyberSecurity
FCC to Vote on Banning Chinese Tech in US Undersea Cables Amid National Security Concerns
The Federal Communications Commission (FCC) has issued a statement announcing its intention to vote on a new proposal on August 7, which would prohibit the use of Chinese technology in the constructio ... Read more
-
CybersecurityNews
Hackers Started Exploiting CitrixBleed 2 Vulnerability Before Public PoC Disclosure
Researchers detected an active exploitation of CVE-2025-5777, dubbed CitrixBleed 2, nearly two weeks before a public proof-of-concept surfaced. This memory overread vulnerability in Citrix NetScaler a ... Read more
-
CybersecurityNews
Cisco Unified Intelligence Center Vulnerability Allows Remote Attackers to Upload Arbitrary Files
A critical vulnerability in Cisco’s Unified Intelligence Center (CUIC) web-based management interface has been classified with high severity, allowing authenticated remote attackers with Report Design ... Read more
-
Kaspersky
GhostContainer backdoor: malware compromising Exchange servers of high-value organizations in Asia
In a recent incident response (IR) case, we discovered highly customized malware targeting Exchange infrastructure within government environments. Analysis of detection logs and clues within the sampl ... Read more
-
The Hacker News
Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom Backdoors
The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three Chinese state-sponsored threat actors. "Targets of these campaigns ranged from organizations ... Read more
-
CrowdStrike.com
July 2025 Patch Tuesday: One Publicly Disclosed Zero-Day and 14 Critical Vulnerabilities Among 137 CVEs
Microsoft has addressed 137 vulnerabilities in its July 2025 security update release, more than double the number of vulnerabilities in June. This month's patches include fixes for one publicly disclo ... Read more
-
CybersecurityNews
Lenovo Vantage Vulnerabilities Allow Attackers to Escalate Privileges as SYSTEM User
A trio of newly disclosed CVE-2025-6230, CVE-2025-6231 and CVE-2025-6232 underscores how a single trusted OEM utility can become a springboard for full machine compromise. Lenovo Vantage, shipped by d ... Read more
-
InfoSec Write-ups
CVE‑2025‑27210 & CVE‑2025‑27209: Two high‑severity vulnerabilities in Node.js
What is this vulnerability?Two high‑severity flaws: CVE‑2025‑27210 and CVE‑2025‑27209 were found in Node.js. The first is a path traversal bypass exploiting Windows device names (CON, PRN, AUX). The s ... Read more