CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Apache bRPC Vulnerability Enables Remote Command Injection
A critical remote command-injection vulnerability has been discovered in Apache bRPC’s built-in heap profiler service, affecting all versions before 1.15.0 across all platforms. The vulnerability allo ...
-
Daily CyberSecurity
“Nomad Leopard” Spotted in the Wild: Cyber Espionage Campaign Targets Afghan Government
Image: the SEQRITE Labs APT Team A new cyber espionage campaign targeting the heart of Afghanistan’s administration has been uncovered, revealing a mix of official disguises and surprisingly clumsy op ...
-
Daily CyberSecurity
Critical Flaw in “Advanced Custom Fields: Extended” Exposes 100K WordPress Sites to Takeover
A critical security vulnerability has been discovered in Advanced Custom Fields: Extended, a popular WordPress plugin with over 100,000 active installations. The flaw, tracked as CVE-2025-14533, carri ...
-
Daily CyberSecurity
Discord Spy: SolyxImmortal Malware Uses Webhooks for Stealthy Theft
A newly identified Python-based malware, SolyxImmortal, is making the rounds in underground channels, offering a “monolithic” surveillance tool that prioritizes persistence over destruction. In a new ...
-
Daily CyberSecurity
Malformed & Dangerous: Gootloader Returns with New Ransomware Ties
After a mysterious hiatus, the notorious Gootloader malware has resurfaced with a vengeance, sporting a new alliance with ransomware operators and a clever technical trick designed to baffle automated ...
-
Daily CyberSecurity
Industrial Alert: Critical RCE in AVEVA Software Rated CVSS 10
AVEVA, a global leader in industrial software, has issued a critical security bulletin regarding its flagship Process Optimization software (formerly known as ROMeo). The alert details multiple vulner ...
-
Daily CyberSecurity
WhisperPair: Critical Fast Pair Flaw Exposes Headphones to Hijacking
Image: Researchers Your high-end Bluetooth headphones might be listening to more than just your music. A new report from Researchers with KU Leuven’s Computer Security and Industrial Cryptography grou ...
-
Kaspersky
What is the “year 2038 problem”, and how can businesses fix it?
Millions of IT systems — some of them industrial and IoT — may start behaving unpredictably on January 19. Potential failures include: glitches in processing card payments; false alarms from security ...
-
The Hacker News
Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites
Cybersecurity researchers have disclosed details of a security flaw that leverages indirect prompt injection targeting Google Gemini as a way to bypass authorization guardrails and use Google Calendar ...
-
The Hacker News
⚡ Weekly Recap: Fortinet Exploits, RedLine Clipjack, NTLM Crack, Copilot Attack & More
In cybersecurity, the line between a normal update and a serious incident keeps getting thinner. Systems that once felt reliable are now under pressure from constant change. New AI tools, connected de ...