Cyber Newsroom Feed
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CrowdStrike.com
CrowdStrike Falcon Prevents Supply Chain Attack Involving Compromised NPM Packages
Recently, five popular NPM (Node Package Manager) packages were compromised and modified to deliver a malicious DLL, dubbed “Scavenger”. The malware pushed via these compromised NPM packages executes ... Read more
-
TheCyberThrone
VMware Tools VGAuth Vulnerabilities
Skip to content July 28, 2025Overview:Two critical local privilege escalation vulnerabilities were recently discovered in the VGAuth service component of VMware Tools for Windows virtual machines (VMs ... Read more
-
Daily CyberSecurity
Critical Command Injection (CVE-2025-54416) in tj-actions/branch-names GitHub Action Exposes 5,000+ Repos
A critical command injection vulnerability has been disclosed in the widely used GitHub Action tj-actions/branch-names, affecting over 5,000 public repositories. Assigned CVE-2025-54416 with a CVSS sc ... Read more
-
Daily CyberSecurity
The Homograph Illusion: Phishing Attacks Exploit Lookalike Characters to Bypass Defenses – AI Amplifies the Threat
The OTP code is dynamic and changes on each keypress to filter out bots and crawlers | Image: Unit 42 In a new report, Palo Alto Networks’ Unit 42 has unveiled an insidious phishing technique that con ... Read more
-
Daily CyberSecurity
Fire Ant: Stealthy Cyber-Espionage Campaign Targets VMware ESXi & vCenter, Evades Detection
A stealthy and highly sophisticated cyber-espionage campaign known as Fire Ant has been uncovered by Sygnia’s Incident Response and Threat Intelligence teams. Operating beneath the radar since early 2 ... Read more
-
Daily CyberSecurity
RCE, SSRF & Data Exposure: Salesforce Patches 8 Serious Flaws in Tableau Server
Salesforce has released a security advisory addressing eight serious vulnerabilities affecting multiple versions of Tableau Server, the widely used data visualization and business intelligence platfor ... Read more
-
Daily CyberSecurity
CERT Warns of Privilege Escalation Vulnerability in Lakeside SysTrack (CVE-2025-6241)
The CERT Coordination Center (CERT/CC) has issued a Vulnerability Note detailing a critical privilege escalation flaw affecting SysTrack, a widely deployed endpoint monitoring tool developed by Lakesi ... Read more
-
Daily CyberSecurity
Critical Node-SAML Flaw (CVE-2025-54369) Exposes SAML 2.0 to Authentication Bypass
A critical vulnerability has been discovered in the popular open-source Node.js library Node-SAML, used to implement SAML 2.0 authentication workflows. Tracked as CVE-2025-54369 and scoring a CVSS v4 ... Read more
-
Daily CyberSecurity
Singapore’s Critical Infrastructure Under Attack by China-Linked UNC3886 APT
The OT Cybersecurity Information Sharing and Analysis Center (OT-ISAC) has released a threat alert detailing an ongoing and highly coordinated cyber-espionage campaign by the China-linked APT group UN ... Read more
-
Trend Micro
Revisiting UNC3886 Tactics to Defend Against Present Risk
Key Takeaways UNC3886 is an APT group that has historically targeted critical infrastructure, including telecommunications, government, technology, and defense, with a recent attack against Singapore. ... Read more