CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CrowdStrike.com
Falcon Defends Against Git Vulnerability CVE-2025-48384
CrowdStrike has identified active exploitation of Git vulnerability CVE-2025-48384. In the observed activity, threat actors combined sophisticated social engineering tactics with malicious Git reposit ... Read more
-
The Cyber Express
Critical AEM Vulnerability (CVE-2025-54253) Actively Exploited, Says CISA
A new vulnerability in Adobe Experience Manager (AEM) Forms has been confirmed as actively exploited in the wild, prompting the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to add it t ... Read more
-
Help Net Security
Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352)
Threat actors have leveraged a recently patched IOS/IOS XE vulnerability (CVE-2025-20352) to deploy Linux rootkits on vulnerable Cisco network devices. “The operation targeted victims running older Li ... Read more
-
CybersecurityNews
Critical ConnectWise Vulnerabilities Allow Attackers To Inject Malicious Updates
ConnectWise released a critical security update for its Automate platform on October 16, 2025. The patch, version 2025.9, addresses serious flaws in agent communications that could let attackers inter ... Read more
-
CybersecurityNews
LinkPro Rootkit Attacking GNU/Linux Systems Using eBPF Module to Hide Malicious Activities
A sophisticated rootkit targeting GNU/Linux systems has emerged, leveraging advanced eBPF (extended Berkeley Packet Filter) technology to conceal malicious activities and evade traditional monitoring ... Read more
-
security.nl
CentreStack dicht actief aangevallen kwetsbaarheid in file sharing software
CentreStack heeft een beveiligingsupdate uitgebracht voor een actief aangevallen kwetsbaarheid in de file sharing software. Dit wordt echter niet duidelijk in de release notes vermeld. Het bedrijf spr ... Read more
-
InfoSec Write-ups
The Art of Breaking OAuth: Real-World Exploit and Misuses
OverviewOAuth 2.0 is the invisible backbone of modern digital life. From “Login with Google” bottoms on e-commerce platforms to enterprise-wide Microsoft Entra ID integrations, OAuth has become the de ... Read more
-
CybersecurityNews
Cisco Desk, IP, and Video Phone Vulnerabilities Let Remote Attackers Trigger DoS And XSS Attacks
Cisco has issued a security advisory warning of multiple vulnerabilities in its Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 models running Cisco Session Initiation Prot ... Read more
-
The Hacker News
Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices
Oct 17, 2025Ravie LakshmananVulnerability / VPN Security Cybersecurity researchers have disclosed details of a recently patched critical security flaw in WatchGuard Fireware that could allow unauthe ... Read more
-
Daily CyberSecurity
Google DeepMind Partners with CFS to Use AI for Optimizing SPARC Fusion Reactor Efficiency
Google DeepMind has announced a partnership with U.S.-based nuclear fusion startup Commonwealth Fusion Systems (CFS) to leverage AI technologies in optimizing the operational efficiency of its fusion ... Read more