CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CrowdStrike.com
June 2025 Patch Tuesday: One Zero-Day and Nine Critical Vulnerabilities Among 66 CVEs
Microsoft has addressed 66 vulnerabilities in its June 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and nine Critical vulnerabilit ... Read more
-
TheCyberThrone
CISA Adds Apple and TP-Link Vulnerabilities to KEV Catalog
On June 16, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) expanded its Known Exploited Vulnerabilities (KEV) Catalog by adding two high-risk vulnerabilities — one affecting Apple d ... Read more
-
CrowdStrike.com
How Falcon Next-Gen SIEM Protects Enterprises from VMware vCenter Attacks
Internet-facing assets are targeted for many reasons, such as to establish persistence, evade defensive capabilities, and access sensitive networks. According to the search engine Shodan, approximatel ... Read more
-
CrowdStrike.com
June 2025 Patch Tuesday: One Zero-Day and Nine Critical Vulnerabilities Among 66 CVEs
Microsoft has addressed 66 vulnerabilities in its June 2025 security update release. This month's patches include fixes for one actively exploited zero-day vulnerability and nine Critical vulnerabilit ... Read more
-
Daily CyberSecurity
Windows Hello Update: Microsoft Disables Facial Recognition in the Dark Due to Security Flaw
Facial recognition technology is increasingly prevalent across a variety of scenarios; however, cases of identity fraud continue to surface, highlighting that even facial recognition is not infallible ... Read more
-
Cyber Security News
Hackers Actively Exploiting Langflow RCE Vulnerability to Deploy Flodrix Botnet
Security researchers have uncovered an active cyberattack campaign targeting Langflow servers through CVE-2025-3248, a critical remote code execution vulnerability that allows threat actors to deploy ... Read more
-
Daily CyberSecurity
High-Severity Flaw Exposes ASUS Armoury Crate to Authentication Bypass
Gamers and PC enthusiasts relying on ASUS Armoury Crate to manage their high-performance systems are urged to update immediately following the discovery of a serious security vulnerability. Tracked as ... Read more
-
Daily CyberSecurity
Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign
In a major revelation, the Threat Intelligence Department of the Positive Technologies Expert Security Center (PT ESC) has attributed a sophisticated phishing and malware campaign to the APT group Tea ... Read more
-
Daily CyberSecurity
CVE-2025-49596: Critical RCE Vulnerability in MCP Inspector Exposes AI Developer Environments
A newly disclosed security flaw in the MCP Inspector, a tool designed to test and debug Machine Context Protocol (MCP) servers, could allow unauthenticated remote code execution (RCE) — potentially pu ... Read more
-
Daily CyberSecurity
Two sslh Flaws Disclosed: Remote DoS Attacks Possible via Protocol Multiplexer
In June 2025, the SUSE Security Team disclosed critical vulnerabilities in sslh, a lightweight protocol multiplexer used to serve multiple services—such as SSH and HTTPS—on the same port. Though desig ... Read more