CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2025-27364 affects MITRE Caldera
CVE-2025-27364 is a critical Remote Code Execution (RCE) vulnerability identified in MITRE Caldera, a highly regarded cybersecurity platform used for adversary emulation, detection evaluation, and tra ...
-
Cyber Security News
Android Phone’s Unlocked Using Cellebrite’s Linux USB Zero-day Exploit
Amnesty International’s Security Lab has uncovered a sophisticated cyber-espionage campaign in Serbia, where authorities used a zero-day exploit chain developed by Cellebrite to unlock the Android pho ...
-
Cybersecurity News
CVE-2025-27110: ModSecurity Vulnerability Leaves Web Applications Exposed
A newly discovered vulnerability in ModSecurity, a popular open-source web application firewall (WAF), could leave countless web applications vulnerable to attack. The vulnerability, tracked as CVE-20 ...
-
Cybersecurity News
DragonForce Ransomware Group Targets Saudi Arabia with Large-Scale Data Breach
Image: ResecurityThe DragonForce ransomware group has launched a major cyberattack against organizations in Saudi Arabia, marking its first known attack on a large KSA enterprise entity. The attack, d ...
-
Cybersecurity News
BeyondTrust Privilege Management for Windows Vulnerability Allows Local Privilege Escalation
BeyondTrust, a leading provider of privileged access management solutions, has issued a security advisory addressing a critical vulnerability in its Privilege Management for Windows software. The vuln ...
-
The Register
Ransomware criminals love CISA's KEV list – and that's a bug, not a feature
Fresh research suggests attackers are actively monitoring databases of vulnerabilities that are known to be useful in carrying out ransomware attacks. GreyNoise's annual Mass Internet Exploitation Rep ...
-
Hackread - Latest Cybersecurity, Tech, AI, Crypto & Hacking News
Over 350 High-Profile Websites Hit by 360XSS Attack
360XSS campaign exploits Krpano XSS to hijack search results & distribute spam ads on 350+ sites, including government, universities, and news outlets. A widespread campaign exploiting a vulnerability ...
-
The Hacker News
Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone
Mobile Security / Zero-Day A 23-year-old Serbian youth activist had their Android phone targeted by a zero-day exploit developed by Cellebrite to unlock the device, according to a new report from Amne ...
-
BleepingComputer
Serbian police used Cellebrite zero-day hack to unlock Android phones
Serbian authorities have reportedly used an Android zero-day exploit chain developed by Cellebrite to unlock the device of a student activist in the country and attempt to install spyware. Cellebrite ...
-
Help Net Security
MITRE Caldera RCE vulnerability with public PoC fixed, patch ASAP! (CVE-2025–27364)
Users of the MITRE Caldera cyber security platform have been urged to plug a critical hole (CVE-2025–27364) that may allow unauthenticated attackers to achieve remote code execution. About MITRE Calde ...