CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Help Net Security
Attackers exploiting WSUS vulnerability drop Skuld infostealer (CVE-2025-59287)
Attackers have been spotted exploiting the recently patched WSUS vulnerability (CVE-2025-59287) to deploy infostealer malware on unpatched Windows servers. An out-of-band update Last week’s release of ...
-
TheCyberThrone
Google Chrome 142 Stable Channel Release
October 30, 2025Google Chrome 142 stable channel was officially released on October 28, 2025, for Windows, Mac, Linux, Android, and ChromeOS platforms. The update includes 20 security fixes, addressin ...
-
0patch.com
Micropatches Released for Windows Installer Elevation of Privilege Vulnerability (CVE-2025-50173)
August 2025 Windows Updates brought a patch for CVE-2025-50173, a privilege escalation vulnerability in Windows Installer that could allow a local low-privileged attacker to execute arbitrary code as ...
-
cert.pl
Vulnerability in OpenSolution Quick.Cart software
Vulnerability in OpenSolution Quick.Cart software CVE ID CVE-2025-10317 Publication date 30 October 2025 Vendor OpenSolution Product Quick.Cart Vulnerable versions 6.7 Vulnerability type (CWE) Cross-S ...
-
The Hacker News
ThreatsDay Bulletin: DNS Poisoning Flaw, Supply-Chain Heist, Rust Malware Trick and New RATs Rising
The comfort zone in cybersecurity is gone. Attackers are scaling down, focusing tighter, and squeezing more value from fewer, high-impact targets. At the same time, defenders face growing blind spots ...
-
CybersecurityNews
New Attack Combines Ghost SPNs and Kerberos Reflection to Elevate Privileges on SMB Servers
A sophisticated privilege escalation vulnerability in Windows SMB servers, leveraging Ghost Service Principal Names (SPNs) and Kerberos authentication reflection to achieve remote SYSTEM-level access. ...
-
InfoSec Write-ups
Blue TryHackMe Walkthrough
23 min readFeb 6, 2025Room link [TryHackMe]ReconnaissanceThe first phase of Hacking involves in gathering information about a target to identify the potential technologies used by the target, which co ...
-
Medium
Planning — HackTheBox Walkthrough
6 min read4 days agoIntroductionPlanning is an Easy Linux machine on HackTheBox that covers key penetration testing techniques such as Grafana exploitation, container escape, and privilege escalation ...
-
security.nl
VS verzoekt organisaties om op kwetsbare Windows-servers te controleren
Het cyberagentschap van de Amerikaanse overheid heeft organisaties opgeroepen om op kwetsbare Windows-servers te controleren. Aanleiding is actief misbruik van een kritieke kwetsbaarheid in de Windows ...
-
security.nl
WordPress-sites aangevallen via kritieke kwetsbaarheid in plug-in Freeio
WordPress-sites worden actief aangevallen via een kritieke kwetsbaarheid in de plug-in Freeio, zo laat securitybedrijf Wordfence weten. Freeio is een plug-in waarmee WordPress-sites zijn te veranderen ...