Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CrowdStrike.com
April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs
Microsoft has addressed 121 vulnerabilities in its April 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and 11 Critical vulnerabilit ... Read more
-
Daily CyberSecurity
CVE-2025-27840: How a Tiny ESP32 Chip Could Crack Open Bitcoin Wallets Worldwide
Image: Crypto Deep Tech In a jaw-dropping revelation, researchers at Crypto Deep Tech have exposed a severe cryptographic vulnerability in the ubiquitous ESP32 microcontroller, cataloged as CVE-2025-2 ... Read more
-
Daily CyberSecurity
Nationwide Smishing Scam Targets Toll Road Users, Stealing Payment Data
Sample phishing SMS messages | Image: Cisco Talos A widespread and persistent SMS phishing (smishing) campaign, uncovered by the Cisco Talos team, has been targeting toll road users across at least ei ... Read more
-
Daily CyberSecurity
Urgent: Yii 2 Vulnerability CVE-2024-58136 Under Active Exploit
A critical security vulnerability, tracked as CVE-2024-58136 (CVSS 9.1), has been uncovered in the popular PHP web application framework Yii 2, affecting versions prior to 2.0.52. With over 25 million ... Read more
-
Daily CyberSecurity
Houthi Influence Campaign: Deceptive Tactics on Facebook Target Israel and Gulf States
In a recent cybersecurity analysis, ClearSky’s team uncovered a persistent influence campaign originating from Yemen/Houthi, targeting Israel and Gulf states. The campaign, initially exposed in 2019, ... Read more
-
Trend Micro
BPFDoor’s Hidden Controller Used Against Asia, Middle East Targets
Key Takeaways BPFDoor is a state-sponsored backdoor designed for cyberespionage activities. Through our investigation of BPFDoor attacks, we unearthed a controller that hasn’t been observed being used ... Read more
-
Daily CyberSecurity
CVE-2024-56406: Heap Overflow Vulnerability in Perl Threatens Denial of Service and Potential Code Execution
Perl, a versatile programming language widely used for various tasks like system administration and web development, has been found to contain a security vulnerability. A recently discovered heap buff ... Read more
-
Daily CyberSecurity
Critical Vulnerabilities & Major Cyberattacks: April 7-13 Recap
The cybersecurity landscape has witnessed significant activity over the past week (April 7th – April 13th), with threat actors actively exploiting vulnerabilities in widely used software. The period s ... Read more
-
seclists.org
83 vulnerabilities in Vasion Print / PrinterLogic
Full Disclosure mailing list archives 83 vulnerabilities in Vasion Print / PrinterLogic From: Pierre Kim <pierre.kim.sec () gmail com> Date: Tue, 8 Apr 2025 13:48:18 -0400 Hello, Please find a text-on ... Read more
-
seclists.org
[CVE-2025-32102, CVE-2025-32103] SSRF and Directory Traversal in CrushFTP 10.7.1 and 11.1.0 (as well as legacy 9.x)
Full Disclosure mailing list archives From: Rafael Pedrero <rafael.pedrero () gmail com> Date: Fri, 4 Apr 2025 08:01:00 +0200 <!-- # Exploit Title: Server-Side Request Forgery (SSRF) in CrushFTP 10.7. ... Read more