CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Root via Telnet: Why You Must Patch Your Synology NAS Against This Decade-Old Ghost
On January 29, 2026, Synology, a preeminent manufacturer of Network Attached Storage (NAS) solutions, disseminated a series of critical firmware updates for its DiskStation Manager (DSM) operating sys ...
-
Daily CyberSecurity
Grid Sabotage: “Static Tundra” Hits Poland’s Energy Sector with DynoWiper
The critical infrastructure of Poland’s energy sector has come under sustained fire from a sophisticated threat actor deploying destructive wiper malware. In a comprehensive new report, CERT Polska de ...
-
Daily CyberSecurity
ASUS Kills “File Shredder” Feature to Fix Critical Flaw
ASUS has issued a mandatory update for its commercial computer line that completely removes a core security feature rather than patching it. The alert concerns a high-severity vulnerability in the ASU ...
-
Daily CyberSecurity
Fancy Bear Returns: APT28 Exploits Office Flaw in “Operation Neusploit”
The notorious Russia-linked threat group APT28 (also known as Fancy Bear) has resurfaced with a sophisticated new campaign targeting Central and Eastern Europe. Dubbed “Operation Neusploit” by researc ...
-
Daily CyberSecurity
WiFi Hijack: Hikvision Patches Command Injection in DS-3WAP Access Points
Hikvision has rolled out a critical firmware update for its line of wireless access points (APs) to squash a high-severity vulnerability that could allow attackers to hijack devices from the inside. T ...
-
Daily CyberSecurity
Broadcast Hijack: Critical KiloView Flaw (CVSS 9.8) Grants Full Control
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority alert regarding a maximum-severity vulnerability in KiloView, a popular brand of video encoding and streaming dev ...
-
Daily CyberSecurity
AI-Coded Oppression: “RedKitten” Malware Targets Iranian Protesters
In a disturbing fusion of human rights abuses and artificial intelligence, researchers at HarfangLab have uncovered a new cyber-espionage campaign targeting Iranian protesters. Dubbed “RedKitten,” the ...
-
Daily CyberSecurity
Identity at Risk: Apache Syncope Patches Critical Login XSS & XXE Flaws
The Apache Software Foundation has released crucial security updates for Apache Syncope, its open-source digital identity management powerhouse. The patches address two distinct vulnerabilities that c ...
-
BleepingComputer
Russian hackers exploit recently patched Microsoft Office bug in attacks
Ukraine’s Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of Microsoft Office. On January 26, Mic ...
-
The Register
Russia-linked APT28 attackers already abusing new Microsoft Office zero-day
Russia-linked attackers are already exploiting Microsoft's latest Office zero-day, with Ukraine's national cyber defense team warning that the same bug is being used to target government agencies insi ...