CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
security.nl
'Diplomaten aangevallen via Windows-lek waarvoor geen patch beschikbaar is'
Aanvallers maken actief misbruik van een kwetsbaarheid in Windows waarvoor geen beveiligingsupdate beschikbaar is. Dat meldt securitybedrijf Arctic Wolf. Het beveiligingslek zou onder andere zijn inge ...
-
BleepingComputer
Windows zero-day actively exploited to spy on European diplomats
A China-linked hacking group is exploiting a Windows zero-day in attacks targeting European diplomats in Hungary, Belgium, and other European nations. According to Arctic Wolf Labs, the attack chain b ...
-
security.nl
Australië waarschuwt voor Cisco-routers besmet met Badcandy-malware
De Australische overheid waarschuwt organisaties voor routers en switches van Cisco die met de "Badcandy" malware besmet zijn. Badcandy is een webshell waarmee aanvallers toegang tot gecompromitteerde ...
-
The Cyber Express
Hundreds of Australian Devices Compromised with BadCandy Implant
Australian cyber agency has issued a critical advisory warning that over 150 devices in Australia remain compromised with the BadCandy implant as of late October 2025—two years after patches became av ...
-
security.nl
Amerikaanse overheid bevestigt actief misbruik van VMware-lek
Aanvallers maken actief misbruik van een kwetsbaarheid in VMware Aria Operations en VMware Tools waarvoor vorige maand een beveiligingsupdate verscheen, zo meldt het Amerikaanse cyberagentschap CISA. ...
-
The Hacker News
CISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange Servers
Oct 31, 2025Ravie LakshmananVulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA), along with international partner ...
-
CybersecurityNews
CISA Warns of XWiki Platform Injection vulnerability Exploited to Execute Remote Code
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a severe injection vulnerability in the XWiki Platform, designated as CVE-2025-24893. This flaw allo ...
-
The Hacker News
CISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active Attacks
Oct 31, 2025Ravie LakshmananVulnerability / Cyber Attack The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Broadcom VMware To ...
-
Daily CyberSecurity
Chinese APT BRONZE BUTLER Exploits LANSCOPE Zero-Day for SYSTEM Control
A sophisticated campaign executed by the Chinese state-sponsored threat group BRONZE BUTLER (also known as Tick) has been confirmed, utilizing a zero-day vulnerability in the Japanese-developed Motex ...
-
Daily CyberSecurity
CISA Warns of Active Exploitation in XWiki and VMware Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new flaws—CVE-2025-24893 in XWiki Platform and CVE-2025-41244 in Broadcom VMware Aria Operations and VMware Tools—to its ...