CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
8 Flaws: ASUS Routers Urgently Need Patch for Authentication Bypass (CVE-2025-59366, CVSS 9.4)
ASUS has released an urgent security update to address a sweeping list of eight potential vulnerabilities in multiple router models, spanning various components including AiCloud, bwdpi, WebDAV, and t ...
-
Daily CyberSecurity
ASUS LPE Flaw (CVE-2025-59373): High-Severity Bug Grants SYSTEM Privileges via MyASUS Component
ASUS has released critical security updates addressing a local privilege escalation (LPE) vulnerability in the ASUS System Control Interface Service, a core component used by the MyASUS application ac ...
-
Daily CyberSecurity
Chromium Reopens JPEG-XL Debate: Will Google Reinstate Support After Apple Adopted It?
As early as 2021, engineers proposed adding support for the JPEG-XL image format to the Chromium browser project. JPEG-XL, the successor to the traditional JPEG standard, offers markedly improved comp ...
-
Daily CyberSecurity
OpenAI Launches Shopping Research: ChatGPT Now Generates Personalized Buying Guides
OpenAI recently announced the rollout of a new Shopping Research feature for all ChatGPT users — a tool that leverages artificial intelligence to help people select everything from home furnishings to ...
-
CybersecurityNews
Critical FluentBit Vulnerabilities Let Attackers to Cloud Environments Remotely
A new chain of five critical vulnerabilities discovered in Fluent Bit has exposed billions of containerized environments to remote compromise. Fluent Bit, an open-source logging and telemetry agent de ...
-
The Register
Clop's Oracle EBS rampage reaches Dartmouth College
Dartmouth College has confirmed it's the latest victim of Clop's Oracle E-Business Suite (EBS) smash-and-grab. According to a breach notification filed with Maine's attorney general, the New Hampshire ...
-
hackread.com
Update Firefox to Patch CVE-2025-13016 Vulnerability Affecting 180 Million Users
AI security firm AISLE recently discovered a serious vulnerability in the Firefox web browser that went unnoticed for six months. This flaw could have let attackers run their own instructions on a use ...
-
The Cyber Express
Apache Syncope Passwords at Risk from Newly Disclosed CVE-2025-65998
A critical security flaw has been uncovered in Apache Syncope, the widely used open-source identity management system, potentially putting organizations at risk of exposing sensitive password informat ...
-
The Hacker News
ToddyCat’s New Hacking Tools Steal Outlook Emails and Microsoft 365 Access Tokens
Nov 25, 2025Ravie LakshmananMalware / Vulnerability The threat actor known as ToddyCat has been observed adopting new methods to obtain access to corporate email data belonging to target companies, ...
-
security.nl
'Honderden kwetsbare Monsta FTP-clients toegankelijk vanaf internet'
Honderden Monsta FTP-clients die vanaf het internet toegankelijk zijn bevatten een kritieke kwetsbaarheid waardoor ongeauthenticeerde aanvallers op afstand code op systemen kunnen uitvoeren. Dat laat ...