CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Critical 9.3 CVSS Flaw in Gogs Turns Repositories into Malware Delivery Vectors
The Gogs project, a popular self-hosted Git service prized for its simplicity and painless setup, has been hit by a critical security flaw that could turn trusted repositories into delivery vectors fo ...
-
Daily CyberSecurity
Critical Request Smuggling & Cache Flaws Discovered in Cloudflare’s Pingora
Security researchers have disclosed three significant vulnerabilities in Pingora, the high-performance Rust framework developed by Cloudflare to build programmable network services. While Rust is cele ...
-
TheCyberThrone
Termite Ransomware — Threat Intelligence and Technical Dissection
1. Executive SummaryTermite is a highly sophisticated ransomware operation first observed in November 2024. Built on the leaked Babuk ransomware source code, Termite has evolved rapidly from opportuni ...
-
CybersecurityNews
Critical ExifTool Flaw Lets Malicious Images Trigger Code Execution on macOS
A serious security flaw has been found in ExifTool, a popular open-source tool used to read and edit image file metadata. Tracked as CVE-2026-3102, this vulnerability affects macOS systems and allows ...
-
The Cloudflare Blog
Fixing request smuggling vulnerabilities in Pingora OSS deployments
2026-03-097 min readIn December 2025, Cloudflare received reports of HTTP/1.x request smuggling vulnerabilities in the Pingora open source framework when Pingora is used to build an ingress proxy. Tod ...
-
The Hacker News
⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware
Another week in cybersecurity. Another week of "you've got to be kidding me." Attackers were busy. Defenders were busy. And somewhere in the middle, a whole lot of people had a very bad Monday morning ...
-
CybersecurityNews
Critical Nginx UI Vulnerabilities Allow Attacker to Download a Full System Backup
Nginx UI Vulnerabilities A newly discovered critical vulnerability in Nginx UI allows unauthenticated attackers to download and decrypt full system backups. Tracked as CVE-2026-27944, this flaw is cat ...
-
The Cyber Express
Critical Nginx UI Vulnerability Exposes Server Backups and Sensitive Data
A newly disclosed vulnerability in Nginx UI, tracked as CVE-2026-27944, has raised major security concerns after researchers confirmed that attackers can download and decrypt server backups without au ...
-
security.nl
Securitybedrijf meldt grootschalig misbruik van kritiek Cisco SD-WAN-lek
Aanvallers maken op grote schaal misbruik van een kritieke kwetsbaarheid in Cisco Catalyst SD-WAN Controller, zo stelt securitybedrijf WatchTowr. Onlangs liet het Nationaal Cyber Security Centrum (NCS ...
-
CybersecurityNews
Critical ExifTool Flaw Lets Malicious Images Trigger Code Execution on macOS
ExifTool Flaw Malicious Images Trigger Code Execution on macOS A newly discovered vulnerability is challenging the long-held belief that macOS systems are inherently immune to malware. Security resear ...