CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
Atlassian Security Advisory AV25-217
On April 15, 2025, Atlassian issued a critical security advisory AV25-217, addressing multiple vulnerabilities across its widely used software products. These security flaws, if left unpatched, could ...
-
Daily CyberSecurity
Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE
An anonymous security researcher has published proof-of-concept code for CVE-2025-32433, a critical vulnerability in the Erlang/OTP SSH application. The flaw enables unauthenticated remote code execut ...
-
Daily CyberSecurity
CVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation, PoC Releases
Security researcher published the technical details and a proof-of-concept exploit for a vulnerability in Linux kernel—CVE-2024-53141, having a CVSS score of 7.8 for a serious out-of-bounds (OOB) acce ...
-
Daily CyberSecurity
Hitachi Vantara Patches Critical Resource Injection Flaw in Pentaho
Hitachi Vantara has issued a critical security advisory addressing a serious vulnerability in its widely used Pentaho Data Integration & Analytics platform. Tracked as CVE-2025-0756 with a CVSS score ...
-
Daily CyberSecurity
IronHusky APT Resurfaces with Evolved MysterySnail RAT
In a newly released report, Kaspersky’s Global Research and Analysis Team (GReAT) has revealed the resurgence of IronHusky, a Chinese-speaking APT group known for its espionage operations targeting Ru ...
-
Daily CyberSecurity
Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic
Siemens has released a critical security advisory addressing 66 high-severity SQL injection vulnerabilities impacting its TeleControl Server Basic platform. According to the Siemens advisory, attacker ...
-
Daily CyberSecurity
Sophisticated Phishing Campaign Uses Multi-Layered Tactics to Deliver Malware
A recent report from Unit 42, the threat intelligence division of Palo Alto Networks, reveals a sophisticated and evasive phishing campaign discovered in December 2024. This campaign, notable for its ...
-
Daily CyberSecurity
Interlock Ransomware Uses Evolving Tactics to Evade Detection
Screenshot of Interlock’s DLS | Image: Sekoia A new report by Sekoia Threat Detection & Research (TDR) details the activities of Interlock, a ransomware intrusion set first observed in September 2024, ...
-
BleepingComputer
Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now
A critical vulnerability in the Erlang/OTP SSH, tracked as CVE-2025-32433, has been disclosed that allows for unauthenticated remote code execution on vulnerable devices. The flaw was discovered by Fa ...
-
BleepingComputer
Windows NTLM hash leak flaw exploited in phishing attacks on governments
A Windows vulnerability that exposes NTLM hashes using .library-ms files is now actively exploited by hackers in phishing campaigns targeting government entities and private companies. The flaw tracke ...