CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
Hackers are exploiting critical flaw in vBulletin forum software
Two critical vulnerabilities affecting the open-source forum software vBulletin have been discovered, with one confirmed to be actively exploited in the wild. The flaws, tracked under CVE-2025-48827 a ... Read more
-
The Register
ConnectWise customers get mysterious warning about 'sophisticated' nation-state hack
ConnectWise has brought in the big guns to investigate a "sophisticated nation state actor" that broke into its IT environment and then breached some of its customers. In a May 28 advisory, the IT man ... Read more
-
CrowdStrike.com
May 2025 Patch Tuesday: Five Zero-Days and Five Critical Vulnerabilities Among 72 CVEs
Microsoft has addressed 72 vulnerabilities in its May 2025 security update release. This month's patches include fixes for five actively exploited zero-day vulnerabilities, including a zero-day vulner ... Read more
-
cert.pl
Vulnerabilities in applications preloaded on Ulefone and Krüger&Matz smartphones
CVE ID CVE-2024-13915 Publication date 30 May 2025 Vendor Ulefone and Krüger&Matz Product com.pri.factorytest Vulnerable versions All through 1.0 Vulnerability type (CWE) Improper Export of Android Ap ... Read more
-
Cyber Security News
Critical Icinga 2 Vulnerability Allows Attackers to Bypass Validation and Obtain Certificates
A critical security vulnerability discovered in Icinga 2 monitoring systems enables attackers to bypass certificate validation and obtain legitimate certificates for impersonating trusted network node ... Read more
-
SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 22
The Good | Robbinhood Ransomware Operator Pleads Guilty & Cyber Scam Firm Sanctioned U.S. authorities have taken actions against Robbinhood ransomware and Funnull Technology, two high-impact cybercrim ... Read more
-
Kaspersky
Exploits and vulnerabilities in Q1 2025
The first quarter of 2025 saw the continued publication of vulnerabilities discovered and fixed in 2024, as some researchers were previously unable to disclose the details. This partially shifted the ... Read more
-
The Cyber Express
New Apache InLong Vulnerability (CVE-2025-27522) Exposes Systems to Remote Code Execution Risks
A newly disclosed vulnerability, tracked as CVE-2025-27522, has been discovered in Apache InLong, a widely used real-time data streaming platform. The Apache InLong vulnerability introduces the potent ... Read more
-
Cyber Security News
Critical Cisco IOS XE Vulnerability Allows Arbitrary File Upload – PoC Released
A critical security vulnerability in Cisco IOS XE Wireless Controller Software has emerged as a significant threat to enterprise networks, with researchers releasing proof-of-concept (PoC) exploit cod ... Read more
-
The Hacker News
China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil
Vulnerability / Threat Intelligence The China-linked threat actor behind the recent in-the-wild exploitation of a critical security flaw in SAP NetWeaver has been attributed to a broader set of attack ... Read more