CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Apple Sues Ex-Vision Pro Engineer Di Liu: Accused of Stealing Secrets & Joining Competitor Snap
As development on the successor to the Vision Pro continues apace, Apple has recently filed a lawsuit accusing former senior product design engineer Di Liu of failing to disclose his employment at com ... Read more
-
Daily CyberSecurity
Windows User Count Controversy: Microsoft Silently “Corrects” User Base to 1.4 Billion After Implied 400M Drop
Hardware indicator for volume shown at the top center Last week, a Microsoft executive noted in a newly published blog post that Windows is currently in use on over one billion devices worldwide. This ... Read more
-
CrowdStrike.com
How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks
Internet-facing assets are targeted for many reasons, such as to establish persistence, evade defensive capabilities, and access sensitive networks. According to the search engine Shodan, approximatel ... Read more
-
CrowdStrike.com
June 2025 Patch Tuesday: One Zero-Day and Nine Critical Vulnerabilities Among 66 CVEs
Microsoft has addressed 66 vulnerabilities in its June 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and nine Critical vulnerabilit ... Read more
-
Daily CyberSecurity
CVSS 10 RCE in Wing FTP Server (CVE-2025-47812) Allows Full Server Takeover, PoC Releases
A critical remote code execution (RCE) vulnerability has been discovered in Wing FTP Server, a popular cross-platform file transfer solution, allowing unauthenticated attackers to fully compromise ser ... Read more
-
Daily CyberSecurity
CVE-2025-6463: Unauthenticated Arbitrary File Deletion in Forminator Plugin Exposes Over 600,000 WordPress Sites to Remote Takeover
A newly disclosed high-severity vulnerability in the popular Forminator plugin threatens the security of hundreds of thousands of WordPress websites. Tracked as CVE-2025-6463, this arbitrary file dele ... Read more
-
Daily CyberSecurity
Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing
A Chinese student has been sentenced to over a year in prison by Inner London Crown Court for orchestrating a mobile SMS-based phishing (smishing) campaign using a covert “SMS Blaster” system hidden i ... Read more
-
Daily CyberSecurity
ANSSI Exposes “Houken”: China-Linked Threat Actor Exploiting Ivanti CSA Zero-Days & Deploying Linux Rootkits
The French cybersecurity agency ANSSI has exposed a sophisticated threat actor dubbed Houken. First observed exploiting zero-day vulnerabilities in Ivanti Cloud Service Appliance (CSA) devices in Sept ... Read more
-
Daily CyberSecurity
Multi DataEase Flaws: RCE & Bypass Vulnerabilities Threaten BI Platform via JDBC
DataEase, an open-source business intelligence (BI) platform known for its ease of use and data visualization capabilities, has been found to contain several critical vulnerabilities in its database c ... Read more
-
Daily CyberSecurity
Graylog Flaw (CVE-2025-53106, CVSS 8.8): Privilege Escalation Via API Token Abuse
A vulnerability was found in Graylog—a popular Security Information and Event Management (SIEM) solution. Tracked as CVE-2025-53106 and scoring 8.8 on the CVSS v4 scale, this critical flaw allows priv ... Read more