CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
CISA Warns of D-Link Vulnerabilities Actively Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new alert, adding three vulnerabilities affecting D-Link devices to its Known Exploited Vulnerabilities (KEV) Catalog. The ...
-
Daily CyberSecurity
Genie 3 Unleashed: DeepMind’s AI World Evolves with Real-Time Scene Control
Following the unveiling of Genie 2 late last year—a groundbreaking AI model by Google DeepMind capable of interacting with 3D environments through mouse and keyboard inputs and generating such scenes ...
-
Daily CyberSecurity
CISA Adds Three D-Link Flaws to KEV Catalog: EOL IP Cameras Under Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning for organizations and government entities: three vulnerabilities in legacy D-Link devices are now under active exp ...
-
TheCyberThrone
CVE-2025-54136 affects Vibe Coding tool Cursor
August 6, 2025A critical code execution vulnerability, tagged as CVE-2025-54136 (also dubbed “MCPoison”), was found in the Cursor AI-powered code editor. This vulnerability is particularly dangerous f ...
-
Daily CyberSecurity
Critical RCE Flaw (CVE-2025-54594) in React Native Bottom Tabs’ GitHub Actions Exposed Secrets
A critical vulnerability—CVE-2025-54594 (CVSS 9.1)—has been identified in the React Native Bottom Tabs project, exposing the repository to arbitrary code execution and secret exfiltration through a mi ...
-
Daily CyberSecurity
Adobe AEM Forms Patch: Critical Flaws (CVE-2025-54253, CVSS 10.0) Allow RCE & Arbitrary File Read, Public PoCs Available
Adobe has released urgent patches for two critical vulnerabilities affecting Adobe Experience Manager (AEM) Forms on JEE, versions 6.5.23.0 and earlier. The flaws — tracked as CVE-2025-54253 and CVE-2 ...
-
Daily CyberSecurity
The Fake Crypto Bot Scam: How Smart Contracts & AI Videos Are Stealing Millions on YouTube
SentinelLABS has detailed a coordinated wave of cryptocurrency scams weaponizing malicious smart contracts promoted as arbitrage trading bots — all orchestrated through aged YouTube accounts and AI-ge ...
-
Daily CyberSecurity
Critical HFS 2.x Flaw (CVE-2024-23692) Actively Exploited: Legacy File Server Becomes a Ransomware Backdoor
The Imperva Threat Research team sounded the alarm on a coordinated exploitation campaign targeting outdated instances of Rejetto HTTP File Server (HFS) 2.x. The attackers, leveraging a critical serve ...
-
Daily CyberSecurity
High-Severity Flaws in Rockwell Arena Simulation Expose Industrial Systems to Memory Abuse
Rockwell Automation has issued a security advisory addressing three memory abuse vulnerabilities in its Arena Simulation software, a widely used tool for discrete event simulation in manufacturing, lo ...
-
Daily CyberSecurity
Critical Command Injection Flaws in Trend Micro Apex One Actively Exploited
Trend Micro has issued an urgent advisory for two critical command injection vulnerabilities affecting its Apex One (on-prem) management console for Windows. Both vulnerabilities—CVE-2025-54948 and CV ...