Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Cyber Express
100,000+ WordPress Sites at Risk as SureTriggers Exploit Goes Live
A recently uncovered SureTriggers vulnerability has put more than 100,000 websites at risk, highlighting once again how critical plugin security is for WordPress site administrators. The vulnerability ... Read more
-
CrowdStrike.com
Kubernetes IngressNightmare Vulnerabilities: What You Need to Know
We would like to recognize Amit Serper, Travis Lowe, Tony Gore, Adrian Godoy, Mihai Vasilescu, Suraj Sahu, Pablo Ramos, Raj Jammalamadaka, Lacie Griffin, and Josh Grunzweig for their contributions in ... Read more
-
CrowdStrike.com
April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs
Microsoft has addressed 121 vulnerabilities in its April 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and 11 Critical vulnerabilit ... Read more
-
The Hacker News
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation
Website Security / Vulnerability A newly disclosed high-severity security flaw impacting OttoKit (formerly SureTriggers) has come under active exploitation within a few hours of public disclosure. The ... Read more
-
TheCyberThrone
SonicWall impacted by CVE-2025-23009 and CVE-2025-23010
Two vulnerabilities, CVE-2025-23009 and CVE-2025-23010, affecting the SonicWall NetExtender Windows Client, have been disclosed. These vulnerabilities pose medium risks but highlight the importance of ... Read more
-
Daily CyberSecurity
Ivanti Zero-Day CVE-2025-22457 Exploit Details Released
Researchers at Rapid7 published technical details and proof-of-concept exploit code for a critical zero-day vulnerability in Ivanti Connect Secure, tracked as CVE-2025-22457. This flaw, rooted in a st ... Read more
-
Daily CyberSecurity
Jenkins Docker Images Vulnerable to SSH Host Key Reuse
In the ever-evolving world of DevOps automation, Jenkins is a cornerstone tool powering countless build pipelines across organizations of all sizes. But a recently disclosed vulnerability has revealed ... Read more
-
Daily CyberSecurity
Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered
The Joomla Project has issued two security announcements addressing two significant vulnerabilities affecting its CMS and database packages, including a critical SQL injection flaw (CVE-2025-25226) an ... Read more
-
Daily CyberSecurity
Critical Vulnerabilities in Spotfire Products Allow Code Execution (CVE-2025-3114, CVE-2025-3115)
Cloud Software Group has released security advisories addressing critical vulnerabilities in its Spotfire products that could allow attackers to execute arbitrary code and compromise systems. The advi ... Read more
-
Daily CyberSecurity
Microsoft Enhances Exchange and SharePoint Security with AMSI Integration
Microsoft has announced enhanced security measures for its Exchange Server and SharePoint Server products, both of which are critical assets for many organizations. The core of this enhancement is the ... Read more