CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CrowdStrike.com
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a China-nexus adversary that has targeted government, technology, academic, legal, ... Read more
-
CybersecurityNews
Securden Unified PAM Vulnerability Let Attackers Bypass Authentication
Cybersecurity researchers have uncovered a critical security flaw in Securden Unified PAM that allows attackers to completely bypass authentication mechanisms and gain unauthorized access to sensitive ... Read more
-
TheCyberThrone
Citrix NetScaler Patch Release: Act Now to Prevent Exploitation
August 27, 2025On August 26, 2025, Citrix announced a pivotal security update for NetScaler ADC and NetScaler Gateway appliances. This urgent patch addresses several high-impact vulnerabilities, inclu ... Read more
-
Daily CyberSecurity
Awe Dropping: Apple Announces September 9 Event, Teasing a Groundbreaking Design
Apple has officially confirmed that it will host its autumn launch event on September 9 at 10:00 a.m. (Pacific Time) at its Cupertino headquarters. The event will carry the theme “Awe dropping,” hinti ... Read more
-
Daily CyberSecurity
Google Chrome Patches Critical ANGLE Vulnerability (CVE-2025-9478) Discovered by AI Agent Big Sleep
Google has released a critical security update for the Stable channel of Chrome, addressing a use-after-free vulnerability in ANGLE, the graphics engine that underpins WebGL and other rendering tasks. ... Read more
-
Daily CyberSecurity
CVE-2025-41702 (CVSS 9.8): Critical Flaw in Welotec egOS Puts Industrial Systems at Risk
A critical flaw has been identified in the Welotec egOS WebGUI backend, tracked as CVE-2025-41702, which could allow unauthenticated attackers to gain full control of affected devices. The vulnerabili ... Read more
-
Daily CyberSecurity
Cephalus: The New Ransomware That Abuses Legitimate Tools to Bypass Security
Cephalus ransom note posted publicly on Twitter Recently, threat hunters at Huntress observed two separate incidents involving a new ransomware variant dubbed Cephalus. The cases highlight how adversa ... Read more
-
CrowdStrike.com
August 2025 Patch Tuesday: One Publicly Disclosed Zero-Day and 13 Critical Vulnerabilities Among 107 CVEs
Microsoft has addressed 107 vulnerabilities in its August 2025 security update release. This month's patches include fixes for one publicly disclosed zero-day vulnerability and 13 Critical vulnerabili ... Read more
-
CrowdStrike.com
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a China-nexus adversary that has targeted government, technology, academic, legal, ... Read more
-
BleepingComputer
Citrix fixes critical NetScaler RCE flaw exploited in zero-day attacks
Citrix fixed three NetScaler ADC and NetScaler Gateway flaws today, including a critical remote code execution flaw tracked as CVE-2025-7775 that was actively exploited in attacks as a zero-day vulner ... Read more