CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic
Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside M ...
-
cert.pl
Vulnerabilities in UBB.threads software
Vulnerabilities in UBB.threads software CVE ID CVE-2026-54219 Publication date 18 June 2026 Vendor UBB Systems Product UBB.threads Vulnerable versions All through 7.7.5 Vulnerability type (CWE) Improp ...
-
cert.pl
Vulnerabilities in LMS software
Vulnerabilities in LMS software CVE ID CVE-2026-40455 Publication date 18 June 2026 Vendor LMS Product LMS Vulnerable versions All before commit 4cb30a7 Vulnerability type (CWE) Improper Neutralizatio ...
-
cert.pl
Vulnerability in 8cc compiler
Vulnerability in 8cc compiler CVE ID CVE-2026-50643 Publication date 18 June 2026 Vendor rui314 Product 8cc Vulnerable versions b480958 Vulnerability type (CWE) Out-of-bounds Read (CWE-125) Report sou ...
-
The Cyber Express
Windows Defender Vulnerability Exposed as RoguePlanet PoC Spreads Online
A newly disclosed Windows Defender vulnerability, tracked as CVE-2026-50656 and dubbed RoguePlanet, has raised concerns across the cybersecurity community after a working proof-of-concept (PoC) exploi ...
-
Trend Micro
PeopleSoft PeopleTools Pre-Authentication RCE: A PSIGW SSRF Chain That Executes Inside the JVM
Cyber Threats A pre-authentication remote code execution (RCE) chain in Oracle PeopleSoft PeopleTools abuses the Integration Broker's PSIGW gateway to execute code inside the application server's Java ...
-
The Hacker News
Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
Microsoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has now been assigned the CVE identifier CVE-2026-50656 (C ...
-
TheCyberThrone
RoguePlanet Zero-Day – Microsoft Defender
June 17, 2026A new local privilege escalation zero-day has been disclosed in the Microsoft Malware Protection Engine — the core component powering Microsoft Defender Antivirus and System Center Endpoi ...
-
security.nl
Bluetooth-lek in Apple Beats Studio Buds maakt afluisteren gebruikers mogelijk
Een bluetooth-kwetsbaarheid in de Beats Studio Buds van Apple maakt het afluisteren van gebruikers mogelijk. Apple heeft een firmware-update uitgebracht om het probleem te verhelpen. "Een aanvaller bi ...
-
security.nl
Joomla-websites aangevallen via kritiek beveiligingslek in JCE-editor
Een kritieke kwetsbaarheid in de Joomla Content Editor (JCE) wordt actief misbruikt om Joomla-websites mee aan te vallen, zo waarschuwen de ontwikkelaars en de Amerikaanse en Italiaanse autoriteiten. ...