CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Cyber Express
A Compromised Tool Opened the Door to a 91GB European Commission Data Leak
The European Commission cloud breach did not begin with a dramatic system hack or a visible outage. It started quietly, with a trusted tool, a routine update, and a single compromised credential. With ...
-
CybersecurityNews
CISA Adds TrueConf Vulnerability to KEV Catalog Following Active Exploitation
The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting TrueConf software to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as C ...
-
CybersecurityNews
2,000+ FortiClient EMS Instances Exposed Online Amid Active RCE Vulnerability Exploits in the Wild
The Shadowserver Foundation has issued an urgent warning to FortiClient Enterprise Management Server (EMS) administrators after identifying over 2,000 publicly accessible instances globally, two of wh ...
-
Daily CyberSecurity
The CVE Watchtower: Weekly Threat Intelligence Briefing (March 30 – April 5, 2026)
Welcome to this week’s vulnerability digest. Whether you are a CISO charting out your risk management roadmap or a system administrator gearing up for another weekend of emergency patching, sifting th ...
-
Daily CyberSecurity
Zero Authentication, Total Control: Critical CVSS 10 Flaw Uncovered in Dgraph Database
A security vulnerability was found in Dgraph, the high-performance, horizontally scalable GraphQL database. The flaw, designated as CVE-2026-33976, has been assigned a rare CVSS score of 10.0, the hig ...
-
The Register
Researchers didn’t want to glamorize cybercrims. So they roasted them
interview Cybercrime crews have become almost mystical entities, with security vendors assigning them names like Wizard Spider and Velvet Tempest. They hide out in hidden corners of the dark web (ofte ...
-
Help Net Security
Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Financial groups lay out a plan to fight AI identity attacks Generative AI tools have brought the cost ...
-
security.nl
Fortinet waarschuwt voor actief misbruik van kritiek lek in FortiClient EMS
Fortinet waarschuwt voor actief misbruik van een kritiek beveiligingslek in FortiClient EMS waardoor een ongeauthenticeerde aanvaller willekeurige code of commando's op het systeem kan uitvoeren. Orga ...
-
The Hacker News
Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS
Fortinet has released out-of-band patches for a critical security flaw impacting FortiClient EMS that it said has been exploited in the wild. The vulnerability, tracked as CVE-2026-35616 (CVSS score: ...
-
TheCyberThrone
CVE-2026-35616 — Fortinet FortiClient EMS Critical Pre-Auth RCE
April 5, 2026Executive SummaryFortinet FortiClient Endpoint Management Server (EMS) versions 7.4.5 and 7.4.6 contain a critical improper access control vulnerability (CWE-284) in the API authenticatio ...