CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
Daily CyberSecurity
RomethemeKit Elementor Plugin Flaw Enables RCE: CVE-2025-30911
A newly disclosed vulnerability in the popular RomethemeKit For Elementor WordPress plugin—installed on over 30,000 active sites—could allow authenticated users to gain remote code execution (RCE) cap ...
-
security.nl
Lek in Cisco Webex-app maakt client-side remote code execution mogelijk
Een kwetsbaarheid in de Cisco Webex-app maakt client-side remote code execution mogelijk. Daarvoor waarschuwt Cisco, dat een beveiligingsupdate heeft uitgebracht. Het beveiligingslek bevindt zich in h ...
-
The Hacker News
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution
Vulnerability / Network Security A critical security vulnerability has been disclosed in the Erlang/Open Telecom Platform (OTP) SSH implementation that could permit an attacker to execute arbitrary co ...
-
Cyber Security News
CISA Warns of SonicWall Command Injection Vulnerability Exploited in Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical SonicWall vulnerability that is actively being exploited by threat actors. On April 16, 2025 ...
-
BleepingComputer
CISA tags SonicWall VPN flaw as actively exploited in attacks
On Wednesday, CISA warned federal agencies to secure their SonicWall Secure Mobile Access (SMA) 100 series appliances against attacks exploiting a high-severity remote code execution vulnerability. Tr ...
-
Help Net Security
Apple plugs zero-day holes used in targeted iPhone attacks (CVE-2025-31200, CVE-2025-31201)
Apple has released emergency security updates for iOS/iPadOS, macOS, tvOS and visionOS that fix two zero-day vulnerabilities (CVE-2025-31200, CVE-2025-31201) that have been exploited “in an extremely ...
-
Help Net Security
Cyber threats against energy sector surge as global tensions mount
Cyberattacks targeting the energy sector are increasing, driven by a host of geopolitical and technological factors. A report published by Sophos in July 2024, and which surveyed 275 cybersecurity and ...
-
Kaspersky
IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia
Day after day, threat actors create new malware to use in cyberattacks. Each of these new implants is developed in its own way, and as a result gets its own destiny – while the use of some malware fam ...
-
security.nl
Apple waarschuwt voor 'zeer geraffineerde aanval' tegen iPhone-gebruikers
Apple waarschuwt eigenaren van een iPhone voor twee actief misbruikte kwetsbaarheden die bij 'zeer geraffineerde aanvallen' tegen specifieke gebruikers zijn ingezet. Details over de aanvallen en doelw ...
-
Daily CyberSecurity
Synology NAS: Third-Party Drives Restricted in 2025 Plus Series
Synology NAS servers have long been favored by both enthusiasts and enterprises alike. The wide array of features offered by Synology enables users to back up data, share files, run various applicatio ...