CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2025-42957: Critical SAP S/4HANA Code Injection Vulnerability – Exploited in the Wild
September 7, 2025Executive SummaryA newly disclosed and actively exploited vulnerability, CVE-2025-42957, has sent shockwaves through the SAP ecosystem. This critical flaw (CVSS 9.9) affects all SAP S ...
-
DataBreaches.Net
CISA orders federal agencies to patch Sitecore zero-day following hacking reports
Jonathan Greig reports: Federal civilian agencies have until September 25 to patch a vulnerability in popular content management system Sitecore after incident responders said they disrupted a recent ...
-
TheCyberThrone
CISA Adds Sitecore, Linux Kernel, and TP-Link Flaws to KEV Catalog
September 7, 2025The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) catalog, flagging new security threats that are actively being explo ...
-
Help Net Security
Week in review: Several companies affected by the Salesloft Drift breach, Sitecore 0-day vulnerability
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Zscaler, Palo Alto Networks, SpyCloud among the affected by Salesloft Drift breach In the wake of last ...
-
Daily CyberSecurity
Unity 6.3 Makes Gaming More Accessible for Visually Impaired Players
Amid the gaming industry’s growing emphasis on accessibility by design, Unity has announced that the latest Unity 6000.3.0a5 alpha release now includes native support for built-in screen readers on bo ...
-
Daily CyberSecurity
Apple Sued for Training AI on Pirated Books
With the rapid rise of generative AI technologies, the tech industry has increasingly found itself entangled in copyright disputes. Following a series of lawsuits against AI companies accused of using ...
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Critical SAP Vulnerability CVE-2025-42957 Actively Exploited by Hackers
Urgent security alert for SAP users! A critical vulnerability (CVE-2025-42957) allows attackers to take full control of your system. Find out if your SAP S/4HANA is at risk and what steps to take now ...
-
Daily CyberSecurity
Two New High-Severity Flaws in FreePBX Puts Admins and APIs at Risk
The FreePBX project has issued an important security advisory addressing two vulnerabilities that pose significant risks to administrators and API-integrated systems. The flaws—CVE-2025-55209 (CVSS 7. ...
-
Daily CyberSecurity
Beyond Cracked Apps: New macOS Malware Is Using the Terminal to Steal Data
The Trend Micro Research team has uncovered a new campaign distributing Atomic macOS Stealer (AMOS), a malware family designed to exfiltrate sensitive data from Apple devices. While macOS has historic ...
-
The Register
Critical, make-me-super-user SAP S/4HANA bug under active exploitation
A critical code-injection bug in SAP S/4HANA that allows low-privileged attackers to take over your SAP system is being actively exploited, according to security researchers. SAP issued a patch for th ...