CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Hackread - Latest Cybersecurity, Tech, AI, Crypto & Hacking News
Next.js Middleware Flaw Lets Attackers Bypass Authorization
A recent collaborative effort by researchers Rachid Allam and Yasser Allam has exposed a critical vulnerability within the Next.js framework, a widely used JavaScript framework based on React with nea ...
-
cert.pl
Vulnerability in Fast CAD Reader application
CVE ID CVE-2025-2098 Publication date 26 March 2025 Vendor Beijing Honghu Yuntu Technology Product Fast CAD Reader Vulnerable versions All through 4.1.5 Vulnerability type (CWE) Incorrect Privilege As ...
-
Cyber Security News
CrushFTP HTTPS Port Vulnerability Leads to Unauthorized Access
Two critical vulnerabilities have been identified in widely used software: CrushFTP and Next.js. CrushFTP, a file transfer solution, contains a vulnerability allowing unauthorized access through stand ...
-
Cyber Security News
Operation ForumTroll – APT Hackers Exploit Google Chrome Zero-Day To Bypass Sandbox Protections
In mid-March 2025, cybersecurity researchers uncovered “Operation ForumTroll,” targeting Russian media outlets and educational institutions. Victims are infected by clicking phishing links disguised a ...
-
TheCyberThrone
CVE-2025-21377 NTLM Flaw Detailed out
CVE-2025-21377 is a security vulnerability in Microsoft Windows that stems from weaknesses in the implementation of the NTLM (NT LAN Manager) authentication protocol. This vulnerability exposes critic ...
-
Cybersecurity News
GitLab Alert: Patch Now! XSS & Privilege Escalation Risks
GitLab has issued a security advisory, urging all users of self-managed GitLab Community Edition (CE) and Enterprise Edition (EE) to immediately upgrade to the latest versions: 17.10.1, 17.9.3, or 17. ...
-
The Hacker News
EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware
Windows Security / Vulnerability The threat actor known as EncryptHub exploited a recently-patched security vulnerability in Microsoft Windows as a zero-day to deliver a wide range of malware families ...
-
Cyber Security News
Critical NetApp SnapCenter Server Vulnerability Let Attackers Become an Admin User
A high-severity security vulnerability discovered in NetApp SnapCenter could allow authenticated users to gain administrative privileges on remote systems, posing significant risks to organizational d ...
-
Dark Reading
New Testing Framework Helps Evaluate Sandboxes
Source: olandsfokus via Alamy Stock PhotoNEWS BRIEFOrganizations will require new ways to test the effectiveness of sandboxes as attackers improve their evasion techniques and malware rapidly evolves. ...
-
Cyber Security News
DrayTek Routers Vulnerability Exploited in the Wild – Possibly Links to Reboot Loop
Multiple internet service providers worldwide are reporting widespread disruptions as DrayTek routers enter continuous reboot loops, affecting businesses and consumers alike. Security intelligence fir ...