CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Go 1.25.6 and 1.24.12 Patch Critical Vulnerabilities Lead to DoS and Memory Exhaustion Risks
The Go programming language team has rolled out emergency point releases, Go 1.25.6 and 1.24.12, to address six high-impact security flaws. These updates fix denial-of-service (DoS) vectors, arbitrary ...
-
The Hacker News
Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways
Jan 16, 2026Ravie LakshmananVulnerability / Web Security Cisco on Thursday released security updates for a maximum-severity security flaw impacting Cisco AsyncOS Software for Cisco Secure Email Gate ...
-
Daily CyberSecurity
Defeating the Epochalypse: GRUB 2.14 Arrives to Save Linux from Year 2038
More than two years after the debut of version 2.12, the definitive release of GRUB 2.14 has arrived—a momentous update to the ubiquitous bootloader utilized across Linux and various other operating s ...
-
Daily CyberSecurity
Canon Critical Alert: 7 New Flaws Expose Printers to Remote Hackers
Canon has issued a security advisory for its small office and laser printer lineups, warning of seven critical vulnerabilities that could allow remote attackers to take complete control of devices. Th ...
-
Daily CyberSecurity
Zero-Day Threat: UAT-8837 Targets North American Infrastructure
A sophisticated threat actor, tentatively linked to China, is aggressively targeting critical infrastructure in North America with an arsenal of open-source tools and potential zero-day exploits. In a ...
-
Daily CyberSecurity
40,000 Hits in 4 Hours: RondoDox Botnet Storms HPE OneView
Check Point Research uncovered a massive, automated assault on HPE OneView. Researchers observed a botnet launching over 40,000 exploitation attempts in a span of just four hours, targeting a critical ...
-
Daily CyberSecurity
OpenStack Admin Forgery: CVE-2026-22797 Lets Users ‘Ask’ for Root
A significant security flaw has been closed in the OpenStack cloud infrastructure project, specifically within its identity middleware. The vulnerability, tracked as CVE-2026-22797, is a Privilege Esc ...
-
The Register
Cisco finally fixes max-severity bug under active attack for weeks
Cisco finally delivered a fix for a maximum-severity bug in AsyncOS that has been under attack for at least a month. The networking giant disclosed the vulnerability, tracked as CVE-2025-20393, on Dec ...
-
The Register
Flipping one bit leaves AMD CPUs open to VM vuln
If you use virtual machines, there's reason to feel less-than-Zen about AMD's CPUs. Computer scientists affiliated with the CISPA Helmholtz Center for Information Security in Germany have found a vuln ...
-
BleepingComputer
Hackers exploit Modular DS WordPress plugin flaw for admin access
Hackers are actively exploiting a maximum severity flaw in the Modular DS WordPress plugin that allows them to bypass authentication remotely and access the vulnerable sites with admin-level privilege ...