CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
Urgent Security Alert: CISA Warns of Actively Exploited Apple and Microsoft Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning, adding three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, highlighting the urgent need for swif ...
-
InfoSec Write-ups
Your NTLM Hashes at Risk: Inside CVE‑2025‑24054
😱 Your NTLM Hashes at Risk: Inside CVE‑2025‑24054CVE‑2025‑24054NTLM (New Technology LAN Manager) is Microsoft’s legacy authentication suite, still found in many enterprise environments. NTLMv2 improve ...
-
CVSS 10.0 Critical Vulnerability in Erlang/OTP’s SSH: Unauthenticated Remote Code Execution Risk
A critical security vulnerability (CVE-2025–32433) with a CVSS score of 10.0 has been identified in the SSH implementation of Erlang/OTP, a platform widely used in distributed, fault-tolerant systems ...
-
Daily CyberSecurity
Global Zoom Outage Caused by Domain Registry Error at GoDaddy
On Wednesday afternoon Eastern Time, Zoom, the widely used remote video conferencing platform, experienced a massive and global outage. During the disruption, users were met with error messages indica ...
-
Daily CyberSecurity
OpenAI Introduces Flex API for More Affordable AI Model Access
OpenAI’s API pricing is generally considered relatively high—for instance, the latest o3 and o4-mini APIs are significantly more expensive than comparable offerings from competing providers. Although ...
-
Cyber Security News
CISA Warns of Multiple Apple 0-day Vulnerabilities Actively Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding multiple Apple 0-day vulnerabilities currently being actively exploited in targeted attacks. These c ...
-
The Hacker News
CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download
Windows Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited V ...
-
Cyber Security News
PoC Exploit Released for Erlang/OTP SSH Remote Code Execution Vulnerability
A critical remote code execution vulnerability in Erlang/OTP’s SSH implementation has security teams scrambling to patch affected systems after researchers confirmed the development of a proof-of-conc ...
-
TheCyberThrone
Atlassian Security Advisory AV25-217
On April 15, 2025, Atlassian issued a critical security advisory AV25-217, addressing multiple vulnerabilities across its widely used software products. These security flaws, if left unpatched, could ...
-
Daily CyberSecurity
Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE
An anonymous security researcher has published proof-of-concept code for CVE-2025-32433, a critical vulnerability in the Erlang/OTP SSH application. The flaw enables unauthenticated remote code execut ...