CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
Dec 26, 2025Ravie LakshmananAI Security / DevSecOps A critical security flaw has been disclosed in LangChain Core that could be exploited by an attacker to steal sensitive secrets and even influence ...
-
Daily CyberSecurity
The “D” is for Danger: How a Tiny Typo in MAS Activation Hijacks Your PC
The well-known activation tool MAS offers a PowerShell command that allows users to load an activation script online and execute it instantly. Compared with downloading and running a separate utility, ...
-
CybersecurityNews
Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems
A critical vulnerability in LangChain’s core library (CVE-2025-68664) allows attackers to exfiltrate sensitive environment variables and potentially execute code through deserialization flaws. Discove ...
-
Daily CyberSecurity
Critical Flaw in Livewire Exposes Laravel Apps to Stealthy RCE, PoC Releases
Developers relying on Livewire, a cornerstone framework for building dynamic interfaces in Laravel, are facing a severe security reality check. A deep-dive analysis by security firm Synacktiv has unco ...
-
Daily CyberSecurity
The Inference Coup: NVIDIA’s $20B Groq Deal Swallows the TPU’s Creator
The AI startup Groq, best known for its ultra-fast inference chips known as LPUs, has announced that it has signed a “non-exclusive licensing agreement” with NVIDIA covering inference technologies.Eve ...
-
The Hacker News
ThreatsDay Bulletin: Stealth Loaders, AI Chatbot Flaws AI Exploits, Docker Hack, and 15 More Stories
It's getting harder to tell where normal tech ends and malicious intent begins. Attackers are no longer just breaking in — they're blending in, hijacking everyday tools, trusted apps, and even AI assi ...
-
CybersecurityNews
Net-SNMP Vulnerability Enables Buffer Overflow and the Daemon to Crash
A new critical vulnerability affecting the Net-SNMP software suite has been disclosed, posing a significant risk to network infrastructure worldwide. Tracked as CVE-2025-68615, this security flaw allo ...
-
Kaspersky
Threat landscape for industrial automation systems in Q3 2025
Statistics across all threats In Q3 2025, the percentage of ICS computers on which malicious objects were blocked decreased from the previous quarter by 0.4 pp to 20.1%. This is the lowest level for t ...
-
The Hacker News
Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability
Dec 25, 2025Ravie LakshmananVulnerability / Enterprise Security Fortinet on Wednesday said it observed "recent abuse" of a five-year-old security flaw in FortiOS SSL VPN in the wild under certain co ...
-
The Hacker News
CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution
Dec 25, 2025Ravie LakshmananVulnerability / Endpoint Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a security flaw impacting Digiever DS-2105 Pro network video reco ...