CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
Rtpengine: RTP Inject and RTP Bleed vulnerabilities despite proper configuration (CVSS v4.0 Score: 9.3 / Critical)
Full Disclosure mailing list archives From: Sandro Gauci via Fulldisclosure <fulldisclosure () seclists org> Date: Thu, 31 Jul 2025 07:02:38 +0200 Rtpengine: RTP Inject and RTP Bleed vulnerabilities d ...
-
seclists.org
APPLE-SA-07-30-2025-1 Safari 18.6
Full Disclosure mailing list archives From: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org> Date: Wed, 30 Jul 2025 12:51:16 -0700 -----BEGIN PGP SIGNED MESSAGE----- Hash: SH ...
-
The Hacker News
CL-STA-0969 Installs Covert Malware in Telecom Networks During 10-Month Espionage Campaign
Telecommunications organizations in Southeast Asia have been targeted by a state-sponsored threat actor known as CL-STA-0969 to facilitate remote control over compromised networks. Palo Alto Networks ...
-
The Register
CISA roasts unnamed critical national infrastructure body for shoddy security hygiene
CISA is using the findings from a recent probe of an unidentified critical infrastructure organization to warn about the dangers of getting cybersecurity seriously wrong. The US cybersecurity agency, ...
-
Daily CyberSecurity
Microsoft Retires Windows 11 SE: End of Support Set for October 2026, Ceding Education Market to Chrome OS
Launched in November 2021 alongside the student-oriented Surface Laptop SE, Windows 11 SE was Microsoft’s strategic response to expand into the education sector and compete with Google’s Chrome OS. Ho ...
-
CybersecurityNews
Storm-2603 Using Custom Malware That Leverages BYOVD to Tamper with Endpoint Protections
A newly identified threat actor designated Storm-2603 has emerged as a sophisticated adversary in the ransomware landscape, leveraging advanced custom malware to circumvent endpoint security protectio ...
-
BleepingComputer
SonicWall firewall devices hit in surge of Akira ransomware attacks
SonicWall firewall devices have been increasingly targeted since late July in a surge of Akira ransomware attacks, potentially exploiting a previously unknown security vulnerability, according to cybe ...
-
The Hacker News
Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection
Cybersecurity researchers have disclosed a now-patched, high-severity security flaw in Cursor, a popular artificial intelligence (AI) code editor, that could result in remote code execution. The vulne ...
-
BleepingComputer
AI-powered Cursor IDE vulnerable to prompt-injection attacks
A vulnerability that researchers call CurXecute is present in almost all versions of the AI-powered code editor Cursor, and can be exploited to execute remote code with developer privileges. The secur ...
-
security.nl
'Ruim 800 SharePoint-servers missen update voor actief aangevallen lek'
Ruim achthonderd Microsoft SharePoint-servers die vanaf internet toegankelijk zijn, waarvan 24 in Nederland, missen een beveiligingsupdate voor een actief aangevallen kwetsbaarheid. Dat stelt The Shad ...