CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Critical ABB Alert: OPTIMAX Flaw Allows Full System Takeover
Industrial automation giant ABB has released a critical security advisory warning of a severe vulnerability in its Ability™ OPTIMAX® energy management system. The flaw, which affects specific versions ...
-
Daily CyberSecurity
Decades-Old Flaw & New Heap Corruption: Critical glibc Bugs Revealed
The maintainers of the GNU C Library (glibc), the core library that underpins the vast majority of Linux-based systems, have disclosed details on two security vulnerabilities ranging from high-severit ...
-
Help Net Security
Week in review: PoC for FortiSIEM flaw released, Rakuten Viber CISO/CTO on messaging risks
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: What security teams can learn from torrent metadata Security teams often spend time sorting through lo ...
-
TheCyberThrone
Mozilla fixes multiple Sandbox escape Bugs
January 17, 2026The most recent Mozilla Firefox sandbox escape vulnerabilities were disclosed in January 2026 as part of Firefox security updates. These critical flaws affect multiple components and r ...
-
Daily CyberSecurity
CodeBreach: Missing Regex Anchors Exposed AWS Console to Takeover
Image: Wiz Research A seemingly minor misconfiguration in a regular expression could have allowed attackers to seize control of critical AWS infrastructure, potentially compromising millions of cloud ...
-
Daily CyberSecurity
Keylogger Found Harvesting Credentials on Top US Bank’s Employee Store
Image: Sansec Security researchers at Sansec have discovered an active keylogger planted on the employee merchandise store of a “top 3 US bank,” potentially exposing the credentials and personal data ...
-
Daily CyberSecurity
CVE-2025-60021: Apache bRPC Flaw Opens Door to Remote Command Injection
Apache has issued an important fix for bRPC, its industrial-grade C++ RPC framework used to power some of the world’s most demanding systems. The vulnerability, tracked as CVE-2025-60021, is rated as ...
-
Daily CyberSecurity
Microsoft Kills the Last Vista-Era Server Lifecycle
In 2008, Microsoft unveiled Windows Server 2008, a server-oriented operating system predicated on the Windows Vista/Longhorn architecture. Serving as the successor to Windows Server 2003, this iterati ...
-
Daily CyberSecurity
The End of Rationing: Google Boosts Gemini Limits and Unbundles Model Quotas
Google recently intimated that it would recalibrate usage quotas for its subscribers—a move that, despite its vague phrasing, effectively entails a reduction in the daily Google Gemini allocation. For ...
-
BleepingComputer
China-linked hackers exploited Sitecore zero-day for initial access
An advanced threat actor tracked as UAT-8837 and believed to be linked to China has been focusing on critical infrastructure systems in North America, gaining access by exploiting both known and zero- ...