CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Urgent: Cisco ISE Flaws (CVSS 10.0) Actively Exploited in the Wild – Patch Immediately!
Cisco has issued an urgent update to its security advisory, revealing that three critical remote code execution (RCE) vulnerabilities in Cisco Identity Services Engine (ISE) and ISE-PIC are being acti ...
-
TheCyberThrone
CVE-2025-54309 – Critical Authentication Bypass in CrushFTP
Skip to content July 22, 2025OverviewCVE-2025-54309 is a critical security vulnerability in the CrushFTP Managed File Transfer Server, allowing unauthenticated remote attackers to completely bypass au ...
-
Daily CyberSecurity
Urgent Sophos Firewall Update: Two Critical RCE Flaws (CVE-2025-6704, CVE-2025-7624) Patched via Hotfixes
Sophos has issued a security advisory detailing the remediation of five vulnerabilities in Sophos Firewall, including two critical flaws that could allow remote attackers to gain control of affected d ...
-
Daily CyberSecurity
Critical Flaw (CVE-2025-24936, CVSS 9.0) in Nokia WaveSuite NOC Expose Telecom Networks to RCE
Nokia’s WaveSuite NOC (WS-NOC) platform—an integral part of network operations for telecom and enterprise environments— exists two severe vulnerabilities, CVE-2025-24938 and CVE-2025-24936, both of wh ...
-
Daily CyberSecurity
Android Malware Strikes: Fake Facebook & TikTok Apps Impersonate Brands for Traffic Monetization
Trustwave SpiderLabs has identified an active Android malware cluster that blends brand impersonation with traffic monetization tactics, affecting users across multiple regions. This campaign employs ...
-
Daily CyberSecurity
Important wolfSSL Update: Critical Apple Trust Store Bypass & Predictable Randomness Flaws Patched
The developers of the lightweight TLS/SSL implementation wolfSSL have issued a security advisory addressing multiple vulnerabilities in the popular library used across embedded systems, IoT devices, a ...
-
Trend Micro
Proactive Security Insights for SharePoint Attacks (CVE-2025-53770 and CVE-2025-53771)
Key takeaways CVE-2025-53770 and CVE-2025-53771 are vulnerabilities affecting on-premise Microsoft SharePoint Servers, which enables an attacker to upload malicious files and extract cryptographic sec ...
-
SentinelOne
More From Our Main Blog: SharePoint ToolShell | Zero-Day Exploited in-the-Wild Targets Enterprise Servers
On July 19th, Microsoft confirmed that a 0-day vulnerability impacting on-premises Microsoft SharePoint Servers, dubbed “ToolShell” (by researcher Khoa Dinh @_l0gg), was being actively exploited in th ...
-
Google Online Security Blog
Introducing OSS Rebuild: Open Source, Rebuilt to Last
Today we're excited to announce OSS Rebuild, a new project to strengthen trust in open source package ecosystems by reproducing upstream artifacts. As supply chain attacks continue to target widely-us ...
-
The Register
Another massive security snafu hits Microsoft, but don't expect it to stick
comment Here we go again. Another major Microsoft attack, with this one seeing someone — most likely government-backed hackers — exploiting a zero-day bug in SharePoint Server that Redmond failed to f ...