CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Commvault fixes RCE Flaws
August 21, 2025IntroductionRecently, several critical vulnerabilities (CVE-2025-57788, CVE-2025-57789, CVE-2025-57790, and CVE-2025-57791) were discovered in Commvault’s Command Center backup platform ... Read more
-
Daily CyberSecurity
Warlock Ransomware: How a New Group Is Weaponizing Unpatched SharePoint Servers
A newly detailed report from Trend Micro has revealed how the Warlock ransomware group is weaponizing vulnerable Microsoft SharePoint servers in a series of global attacks. The group, which surfaced i ... Read more
-
Daily CyberSecurity
AI’s Dark Side: How a New Website Builder Is Fueling a Surge in Cybercrime
Example CAPTCHA that redirects to banking credential phishing website | Image: Proofpoint Artificial intelligence is lowering the barrier to cybercrime. According to a new report by Proofpoint, threat ... Read more
-
Daily CyberSecurity
A Decade of Espionage: How a Russian APT Exploited Cisco Devices (CVE-2018-0171) for Years
Cisco Talos has released a new analysis exposing “Static Tundra,” a Russian state-sponsored threat actor that has been exploiting unpatched and end-of-life Cisco devices for more than a decade. The gr ... Read more
-
Daily CyberSecurity
How Attackers Exploit and Then Patch a Vulnerability to Hide in Linux Systems
Red Canary has revealed a sophisticated attack campaign targeting cloud-based Linux systems through a critical remote code execution flaw in Apache ActiveMQ (CVE-2023-46604). The campaign showcases ho ... Read more
-
Daily CyberSecurity
CVE-2025-54988: Critical XXE Vulnerability in Apache Tika PDF Parser Exposes Sensitive Data
The widely used Apache Tika toolkit, a powerful library for detecting and extracting metadata and text from over a thousand file formats, has been found vulnerable to a critical XML External Entity (X ... Read more
-
Daily CyberSecurity
Beyond the Inbox: How a Cyber-Espionage Group Is Exploiting Two WinRAR Vulnerabilities
BI.ZONE Threat Intelligence uncovered a series of targeted cyber-espionage campaigns conducted by the Paper Werewolf (GOFFEE) cluster, which weaponized both a known WinRAR vulnerability (CVE-2025-6218 ... Read more
-
Daily CyberSecurity
Apple Issues Urgent Patch for Zero-Day Vulnerability CVE-2025-43300 Exploited in the Wild
Apple has released urgent security updates to patch a zero-day vulnerability actively exploited in the wild, warning that attackers may have already used it in highly targeted campaigns. The flaw, tra ... Read more
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
Russian State Hackers Exploit 7-Year-Old Cisco Router Vulnerability
FBI and Cisco warn Russian hackers are exploiting a 7-year-old Cisco Smart Install vulnerability on outdated routers and switches worldwide. Thousands of outdated Cisco devices that no longer receive ... Read more
-
Help Net Security
Apple fixes zero-day vulnerability exploited in “extremely sophisticated attack” (CVE-2025-43300)
Apple has fixed yet another vulnerability (CVE-2025-43300) that has apparently been exploited as a zero-day “in an extremely sophisticated attack against specific targeted individuals.” About CVE-2025 ... Read more