CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
BleepingComputer
CISA: High-severity Linux flaw now exploited by ransomware gangs
CISA confirmed on Thursday that a high-severity privilege escalation flaw in the Linux kernel is now being exploited in ransomware attacks. While the vulnerability (tracked as CVE-2024-1086) was discl ... Read more
-
CybersecurityNews
Progress Patches MOVEit Transfer Uncontrolled Resource Consumption Vulnerability
Progress Software has released critical security patches addressing a high-severity vulnerability affecting MOVEit Transfer, a widely used enterprise file transfer solution. The vulnerability, tracked ... Read more
-
The Cloudflare Blog
Go and enhance your calm: demolishing an HTTP/2 interop problem
2025-10-316 min readIn September 2025, a thread popped up in our internal engineering chat room asking, "Which part of our stack would be responsible for sending ErrCode=ENHANCE_YOUR_CALM to an HTTP/2 ... Read more
-
hackread.com
Hackers Exploit WSUS Flaw to Spread Skuld Stealer Despite Microsoft Patch
A vulnerability in the Windows Server Update Service (WSUS) is being actively exploited by cybercriminals to plant Skuld Staler malware, according to new research from the cybersecurity firm Darktrac ... Read more
-
Help Net Security
CISA and partners take action as Microsoft Exchange security risks mount
In partnership with international cybersecurity agencies, the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) outlined security best practices for org ... Read more
-
security.nl
'Diplomaten aangevallen via Windows-lek waarvoor geen patch beschikbaar is'
Aanvallers maken actief misbruik van een kwetsbaarheid in Windows waarvoor geen beveiligingsupdate beschikbaar is. Dat meldt securitybedrijf Arctic Wolf. Het beveiligingslek zou onder andere zijn inge ... Read more
-
BleepingComputer
Windows zero-day actively exploited to spy on European diplomats
A China-linked hacking group is exploiting a Windows zero-day in attacks targeting European diplomats in Hungary, Belgium, and other European nations. According to Arctic Wolf Labs, the attack chain b ... Read more
-
security.nl
Australië waarschuwt voor Cisco-routers besmet met Badcandy-malware
De Australische overheid waarschuwt organisaties voor routers en switches van Cisco die met de "Badcandy" malware besmet zijn. Badcandy is een webshell waarmee aanvallers toegang tot gecompromitteerde ... Read more
-
The Cyber Express
Hundreds of Australian Devices Compromised with BadCandy Implant
Australian cyber agency has issued a critical advisory warning that over 150 devices in Australia remain compromised with the BadCandy implant as of late October 2025—two years after patches became av ... Read more
-
security.nl
Amerikaanse overheid bevestigt actief misbruik van VMware-lek
Aanvallers maken actief misbruik van een kwetsbaarheid in VMware Aria Operations en VMware Tools waarvoor vorige maand een beveiligingsupdate verscheen, zo meldt het Amerikaanse cyberagentschap CISA. ... Read more