CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
cert.pl
Vulnerabilities in applications preloaded on Bluebird smartphones
Vulnerabilities in applications preloaded on Bluebird smartphones CVE ID CVE-2025-5344 Publication date 17 July 2025 Vendor Bluebird Product com.bluebird.kiosk.launcher Vulnerable versions All before ...
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Chinese Salt Typhoon Infiltrated US National Guard Network for Months
A sophisticated Chinese APT group, Salt Typhoon, successfully infiltrated the US state’s Army National Guard network for nearly a year, from March 2024 to December 2024. This breach, detailed in a Dep ...
-
Daily CyberSecurity
Arm’s SME2 Supercharges Mobile AI: 6x Faster Responses & On-Device Gemma 3
As AI applications at the device level continue to gain traction, with increasing complexity in tasks ranging from photography and voice recognition to video processing and interaction with AI assista ...
-
Daily CyberSecurity
FCC to Vote on Banning Chinese Tech in US Undersea Cables Amid National Security Concerns
The Federal Communications Commission (FCC) has issued a statement announcing its intention to vote on a new proposal on August 7, which would prohibit the use of Chinese technology in the constructio ...
-
CybersecurityNews
Hackers Started Exploiting CitrixBleed 2 Vulnerability Before Public PoC Disclosure
Researchers detected an active exploitation of CVE-2025-5777, dubbed CitrixBleed 2, nearly two weeks before a public proof-of-concept surfaced. This memory overread vulnerability in Citrix NetScaler a ...
-
CybersecurityNews
Cisco Unified Intelligence Center Vulnerability Allows Remote Attackers to Upload Arbitrary Files
A critical vulnerability in Cisco’s Unified Intelligence Center (CUIC) web-based management interface has been classified with high severity, allowing authenticated remote attackers with Report Design ...
-
Kaspersky
GhostContainer backdoor: malware compromising Exchange servers of high-value organizations in Asia
In a recent incident response (IR) case, we discovered highly customized malware targeting Exchange infrastructure within government environments. Analysis of detection logs and clues within the sampl ...
-
The Hacker News
Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom Backdoors
The Taiwanese semiconductor industry has become the target of spear-phishing campaigns undertaken by three Chinese state-sponsored threat actors. "Targets of these campaigns ranged from organizations ...
-
CybersecurityNews
Lenovo Vantage Vulnerabilities Allow Attackers to Escalate Privileges as SYSTEM User
A trio of newly disclosed CVE-2025-6230, CVE-2025-6231 and CVE-2025-6232 underscores how a single trusted OEM utility can become a springboard for full machine compromise. Lenovo Vantage, shipped by d ...
-
InfoSec Write-ups
CVE‑2025‑27210 & CVE‑2025‑27209: Two high‑severity vulnerabilities in Node.js
What is this vulnerability?Two high‑severity flaws: CVE‑2025‑27210 and CVE‑2025‑27209 were found in Node.js. The first is a path traversal bypass exploiting Windows device names (CON, PRN, AUX). The s ...