CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
Russian APT Exploits Zimbra XSS to Target Ukrainian Government in ‘Operation GhostMail’
A Russian state-linked threat actor has launched a targeted cyberattack against a Ukrainian government agency, exploiting a cross-site scripting (XSS) vulnerability in Zimbra Collaboration Suite to st ...
-
Daily CyberSecurity
Bypassed Boundaries: Two New Vulnerabilities Threaten Spring Framework Apps
Security researchers have identified two distinct vulnerabilities within the widely used Spring Framework, affecting both Spring MVC and Spring WebFlux applications. The advisories, covering an improp ...
-
Daily CyberSecurity
Urgent Patch: Massive Google Chrome Update Patches 26 Flaws, Including 3 Critical Bugs
Google has announced a significant security update for the Chrome stable channel, addressing a staggering 26 security vulnerabilities. The update, which brings the browser to version 146.0.7680.153/15 ...
-
Daily CyberSecurity
Critical Quest KACE Flaw Exploited for Total Network Takeover
Security researchers at Arctic Wolf have issued an urgent warning after observing a spike in malicious activity targeting unpatched Quest KACE Systems Management Appliances (SMA). Starting the week of ...
-
The Register
Unknown attackers exploit yet another critical SharePoint bug
Unknown baddies are abusing yet another critical Microsoft SharePoint bug to compromise victims' SharePoint servers, the US government warned. CVE-2026-20963 is a critical deserialization flaw in Shar ...
-
CybersecurityNews
CISA Warns of Zimbra Collaboration Suite Vulnerability Exploited in Attacks
CISA Warns Zimbra Collaboration Suite Vulnerability Exploit CISA has added a high-severity vulnerability affecting the Zimbra Collaboration Suite (ZCS) to its Known Exploited Vulnerabilities (KEV) cat ...
-
Help Net Security
DarkSword: Researchers uncover another iOS exploit kit
A powerful iPhone hacking toolkit dubbed “DarkSword” has been used since November 2025 to compromise devices by exploiting zero-day iOS vulnerabilities, Google researchers have shared. iOS vulnerabili ...
-
Daily CyberSecurity
Critical Jenkins Flaws Expose CI/CD Servers to Remote Code Execution
The Jenkins project has released a critical security advisory addressing multiple vulnerabilities that could lead to full system compromise. The advisory highlights two high-severity flaws in the Jenk ...
-
The Hacker News
ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More
ThreatsDay Bulletin is back on The Hacker News, and this week feels off in a familiar way. Nothing loud, nothing breaking everything at once. Just a lot of small things that shouldn’t work anymore but ...
-
Daily CyberSecurity
High-Severity RCE Flaw in Atlassian Bamboo Threatens CI/CD Environments
Atlassian has sounded the alarm for users of its Bamboo Data Center, uncovering a high-severity Remote Code Execution (RCE) vulnerability that could allow attackers to seize control of development env ...