CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)
An open-source detection tool to help organizations identify potential exploitation of MongoBleed (CVE-2025-14847), a critical memory disclosure vulnerability affecting MongoDB databases. The vulnera ...
-
The Hacker News
MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide
Dec 29, 2026Ravie LakshmananDatabase Security / Vulnerability A recently disclosed security vulnerability in MongoDB has come under active exploitation in the wild, with over 87,000 potentially susc ...
-
Daily CyberSecurity
The iOS 26.2 Trap: New WebKit Integer Overflow Discovered with PoC—Is Your iPhone at Risk?
Security researcher Joseph Goydish has identified a critical vulnerability within Apple’s WebKit engine, exposing a flaw that could potentially allow attackers to crash browsers or—if chained with oth ...
-
Daily CyberSecurity
PoC Released: MongoBleed Exploit Allows Unauthenticated Attackers to Drain MongoDB Memory
Database administrators are facing a critical security emergency after the disclosure of a high-severity vulnerability in MongoDB, one of the industry’s most widely used database systems. The flaw, tr ...
-
Daily CyberSecurity
Holiday ColdFusion Attacks Reveal Massive 2.5 Million Request Onslaught
What started as a seemingly targeted holiday raid on Adobe ColdFusion servers has unraveled into a sprawling, industrial-scale cyberattack operation. A new intelligence update from GreyNoise reveals t ...
-
Daily CyberSecurity
“Headphone Jacking”: Critical Flaws in Popular Earbuds Let Hackers Hijack Your Phone
Your Bluetooth headphones might be doing more than just playing your favorite tunes—they could be handing over the keys to your digital life. A new report from ERNW Enno Rey Netzwerke GmbH has exposed ...
-
Daily CyberSecurity
CVE-2025-54322 (CVSS 10): AI Agents Uncover Critical Zero-Day in Global Networking Gear
A swarm of autonomous AI agents has successfully discovered a critical, unpatched vulnerability in networking gear used across the globe. A new report from pwn.ai details the discovery of a pre-authen ...
-
Daily CyberSecurity
“Prefix Swap” Panic: Sophisticated “Jackson” Imposter Infiltrates Maven Central
The Java ecosystem, long considered a fortress compared to the wild west of npm, has been breached by a novel and highly sophisticated supply chain attack. A new report from Aikido Security reveals th ...
-
Daily CyberSecurity
The $70 Chip War: Why Google is Firing Execs and Apple is Bracing for a 230% Price Surge
At present, technology companies are dispatching an increasing number of employees to South Korea to negotiate with memory chip suppliers. These firms are not limited to Google and Microsoft; they als ...
-
BleepingComputer
Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed
A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the ...