CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
CountLoader: A New Malware Loader Linked to Russian Ransomware Groups
Researchers at Silent Push have identified a newly emerging malware loader dubbed CountLoader, which they assess to be linked with multiple ransomware groups—primarily Russian-speaking cybercriminals. ...
-
Daily CyberSecurity
CVE-2025-55241: Microsoft Entra ID Flaw with CVSS 10.0 Could Have Compromised Every Tenant Worldwide
Image: Dirk-jan Mollema In one of the most significant discoveries of 2025, security researcher Dirk-jan Mollema revealed a vulnerability in Microsoft Entra ID (formerly Azure AD) that could have enab ...
-
Daily CyberSecurity
GOLD SALEM: A New Ransomware Group Is Exploiting SharePoint Flaws
Researchers from the Sophos Counter Threat Unit (CTU) have published new intelligence on a rising ransomware group known as GOLD SALEM, also referred to as the Warlock Group. Active since March 2025, ...
-
Daily CyberSecurity
CVE-2025-9961: TP-Link Router Flaw Could Be Exploited for RCE, PoC Released
Image: ByteRay Security researchers at ByteRay have published a detailed exploitation write-up of CVE-2025-9961, a vulnerability in TP-Link’s CWMP (CPE WAN Management Protocol) service that can be wea ...
-
Daily CyberSecurity
Microsoft to Build the “World’s Most Powerful AI Data Center” in Wisconsin
Aerial view of Microsoft’s new AI datacenter campus in Mt Pleasant, Wisconsin. Microsoft has officially announced an additional $4 billion investment in Wisconsin to construct its second hyperscale AI ...
-
BleepingComputer
Microsoft Entra ID flaw allowed hijacking any company's tenant
A critical combination of legacy components could have allowed complete access to the Microsoft Entra ID tenant of every company in the world. The fatal mix included undocumented tokens called “actor ...
-
CybersecurityNews
Cybersecurity Newsletter Weekly – Shai Halud Attack, Ivanti Exploits, FinWise, BMW Data Leak, and More
This week in cybersecurity, researchers exposed hidden alliances between ransomware groups, the rise of AI-powered phishing platforms, and large-scale vulnerabilities affecting telecom and enterprise ...
-
Help Net Security
Week in review: Chrome 0-day fixed, npm supply chain attack, LinkedIn data used for AI
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Most enterprise AI use is invisible to security teams Most enterprise AI activity is happening without ...
-
TheCyberThrone
GoAnywhere MFT Hit By Perfect 10 RCE
September 20, 2025IntroductionOn September 18, 2025, Fortra dropped urgent security advisories for users of their flagship GoAnywhere Managed File Transfer (MFT) platform—a staple in secure file movem ...
-
CybersecurityNews
Top Zero-Day Vulnerabilities Exploited in the Wild in 2025
The cybersecurity landscape in 2025 has been marked by an unprecedented surge in zero-day vulnerabilities actively exploited by threat actors. According to recent data, more than 23,600 vulnerabilitie ...