CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Redmi Buds Vulnerability Allow Attackers Access Call Data and Trigger Firmware Crashes
Security researchers have uncovered significant vulnerabilities in the firmware of Xiaomi’s popular Redmi Buds series, specifically affecting models ranging from the Redmi Buds 3 Pro up to the latest ...
-
CybersecurityNews
New Kerberos Relay Attack Uses DNS CNAME to Bypass Mitigations – PoC Released
A critical flaw in Windows Kerberos authentication that significantly expands the attack surface for credential relay attacks in Active Directory environments. By abusing how Windows clients handle DN ...
-
The Cyber Express
EU and INTERPOL Hunt Black Basta Ransomware Kingpin, Suspects Identified in Ukraine
European and international law enforcement agencies have intensified their pursuit of individuals connected to the Black Basta ransomware operation. Authorities confirmed that the alleged leader of th ...
-
CybersecurityNews
BodySnatcher – New Vulnerability Allows Attacker to Impersonate Any ServiceNow User
A critical vulnerability in ServiceNow’s Virtual Agent API and the Now Assist AI Agents application has been discovered, allowing unauthenticated attackers to impersonate any user and execute privileg ...
-
Daily CyberSecurity
Beyond Routing: Transform the OpenWrt One into a Powerful Debian Micro-Server
The OpenWrt One represents the inaugural hardware offering from the esteemed OpenWrt open-source firmware community. While the technical orchestration and firmware development are masterminded by the ...
-
Daily CyberSecurity
CVE-2026-0695: High-Severity XSS Flaw Patched in ConnectWise PSA 2026.1
ConnectWise has released a crucial security update for its Professional Services Automation (PSA) platform, addressing two significant vulnerabilities that could allow attackers to weaponize mundane a ...
-
Daily CyberSecurity
Unpatched RCE: Livewire Filemanager Upload Flaw (CVE-2025-14894) Exposes Laravel Apps
A critical new security flaw has been unearthed in Livewire Filemanager, a popular tool used within the Laravel PHP framework, potentially leaving web applications wide open to unauthenticated remote ...
-
Daily CyberSecurity
Bluetooth “Heartbleed” and DoS Flaws Found in Xiaomi Redmi Buds, No Patch
A pair of critical vulnerabilities has been discovered in Xiaomi’s popular Redmi Buds series, exposing users to privacy leaks and persistent denial-of-service (DoS) attacks. According to a new vulnera ...
-
Daily CyberSecurity
Critical Deno Flaws Risk Secrets (CVE-2026-22863) & Execution (CVE-2026-22864)
Deno, the modern JavaScript and TypeScript runtime famous for its “secure by default” architecture, has hit a stumbling block with the discovery of two significant security vulnerabilities. The flaws, ...
-
Daily CyberSecurity
Critical ABB Alert: OPTIMAX Flaw Allows Full System Takeover
Industrial automation giant ABB has released a critical security advisory warning of a severe vulnerability in its Ability™ OPTIMAX® energy management system. The flaw, which affects specific versions ...