CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Chinese APT Hackers Exploit Router Vulnerabilities to Infiltrate Enterprise Environments
Over the past several years, a concerted campaign by Chinese state-sponsored Advanced Persistent Threat (APT) groups has exploited critical vulnerabilities in enterprise-grade routers to establish lon ... Read more
-
Help Net Security
Cato Networks acquires Aim Security to bring AI protection into SASE Cloud
Cato Networks acquired Aim Security to further enhance the Cato SASE Cloud Platform, supporting secure enterprise adoption of AI agents and both public and private AI applications. Cato has now exceed ... Read more
-
Daily CyberSecurity
CVE-2025-5086 (CVSS 9.0): A Critical RCE in DELMIA Apriso with Exploit Attempts Seen in the Wild
Manufacturing operations are increasingly threatened not just by IoT weaknesses, but also by vulnerabilities in the complex software platforms that tie production floors to enterprise systems. One suc ... Read more
-
CrowdStrike.com
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a China-nexus adversary that has targeted government, technology, academic, legal, ... Read more
-
CrowdStrike.com
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a China-nexus adversary that has targeted government, technology, academic, legal, ... Read more
-
Daily CyberSecurity
CVE-2025-57833: A New SQL Injection Flaw Puts Django Web Applications at Risk
The Django Software Foundation has released important security updates for multiple supported versions of the popular Python web framework. The patches address a high-severity vulnerability tracked as ... Read more
-
The Register
US puts $10M bounty on three Russians accused of attacking critical infrastructure
The US State Department has put a $10 million bounty on the heads of three Russians accused of being intelligence agents hacking America's critical infrastructure - primarily via old Cisco kit, it see ... Read more
-
Daily CyberSecurity
CVE-2025-53690: Mandiant and Sitecore Warn of Active Exploitation in ASP.NET Machine Key Configurations
A coordinated disclosure by Mandiant and Sitecore has revealed the active exploitation of a critical configuration vulnerability tracked as CVE-2025-53690 (CVSS 9.0). The flaw stems from the use of pu ... Read more
-
Daily CyberSecurity
CISA Warns: Actively Exploited TP-Link Router Flaws Added to KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has added two TP-Link router vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, underscoring the urgent need for network ... Read more
-
Daily CyberSecurity
Frostbyte10: The Critical Flaws Threatening Global Supply Chains
Researchers at Armis Labs have uncovered a set of ten severe vulnerabilities in Copeland E2 and E3 controllers, devices that are widely used to manage HVAC, refrigeration, lighting, and building syste ... Read more