CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
PostgreSQL Fixes 5 Security Flaws Including Critical Code Execution Risks
The PostgreSQL Global Development Group has issued a critical alert for database administrators worldwide, releasing a comprehensive update to address five distinct security vulnerabilities. The patch ...
-
Daily CyberSecurity
Ghost NICs & Secret Knocks: Dell Zero-Day (CVSS 10) Exploited by UNC6201
A high-risk zero-day vulnerability in Dell’s virtualization software has become the playground for a sophisticated espionage campaign. In a joint report, Mandiant and Google Threat Intelligence Group ...
-
Daily CyberSecurity
Hackers Use Jira Notifications to Bypass Spam Filters
A new spam campaign is slipping past enterprise defenses by wearing a disguise that most security filters explicitly trust: Atlassian Jira. A new report from Trend Micro details how threat actors are ...
-
Daily CyberSecurity
“Dormant” Backdoors: Ivanti EPMM Zero-Days Exploited to Plant Long-Term Spies
Two critical zero-day vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) are currently being exploited in a widespread campaign to compromise enterprise networks across the globe. A new report f ...
-
The Register
China-linked snoops have been exploiting Dell 0-day since mid-2024, using 'ghost NICs' to avoid detection
China-linked attackers exploited a maximum-severity hardcoded-credential bug in Dell RecoverPoint for Virtual Machines as a zero-day since at least mid-2024. It's all part of a long-running effort to ...
-
Daily CyberSecurity
CISA Adds 2008 Windows Flaw & Chrome Zero-Day to KEV
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with four new entries. The agency has confirmed evidence of active exploitatio ...
-
Google Cloud
From BRICKSTORM to GRIMBOLT: UNC6201 Exploiting a Dell RecoverPoint for Virtual Machines Zero-Day
Written by: Peter Ukhanov, Daniel Sislo, Nick Harbour, John Scarbrough, Fernando Tomlinson, Jr., Rich Reece Introduction Mandiant and Google Threat Intelligence Group (GTIG) have identified the zero-d ...
-
Help Net Security
OT teams are losing the time advantage against industrial threat actors
In many industrial environments, internet-facing gateways, remote access appliances, and boundary systems sit close enough to production networks that attackers can move from IT intrusion to operation ...
-
CybersecurityNews
Firefox v147.0.3 Released With Fix for Heap Buffer Overflow Vulnerability
Firefox v147.0.3 Released Mozilla has released Firefox version 147.0.3, addressing a critical memory-related flaw that could allow attackers to execute arbitrary code by exploiting a heap buffer overf ...
-
The Cyber Express
CleanTalk WordPress Plugin Vulnerability Puts 200,000 Sites at Risk
A WordPress plugin vulnerability has placed as many as 200,000 websites at potential risk, following the disclosure of a severe flaw in the CleanTalk Anti-Spam plugin. The issue, tracked as CVE-2026-1 ...