CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2025-24054 Critical NTLM Hash Flaw
CVE-2025-24054 is a high-severity NTLM authentication vulnerability that allows attackers to leak NTLMv2-SSP (Security Support Provider) hashes through spoofing techniques. The exploitation relies on ...
-
Daily CyberSecurity
Erlang/OTP CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE
A critical vulnerability has been discovered in the SSH server component of Erlang/OTP, a technology widely used in telecommunications, distributed systems, and real-time platforms. The flaw, now trac ...
-
Daily CyberSecurity
Cisco Patches CVE-2025-20236: Unauthenticated RCE Flaw in Webex App via Malicious Meeting Links
Cisco has issued an important security advisory addressing a high-severity vulnerability in its Webex App that could allow unauthenticated remote code execution (RCE) through malicious meeting invite ...
-
Daily CyberSecurity
APT29 Targets European Diplomats with Wine-Themed Phishing
A new wave of targeted phishing attacks aimed at European governments and diplomats is underway, with the threat group APT29 identified as the perpetrator. Check Point Research (CPR) has been closely ...
-
Daily CyberSecurity
CISA Alert: Actively Exploited SonicWall SMA100 Vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert, adding CVE-2021-20035 to its Known Exploited Vulnerabilities (KEV) Catalog following verified evidence of active ...
-
Daily CyberSecurity
Unprotected APIs Expose Data of 33,000 Employees
A recent discovery by CloudSEK’s BeVigil platform has highlighted the significant risks posed by unprotected Application Programming Interfaces (APIs). BeVigil uncovered that API endpoints belonging t ...
-
Daily CyberSecurity
CrazyHunter Ransomware Targets Taiwan’s Critical Infrastructure
Trend Micro has uncovered a targeted ransomware campaign conducted by a newly identified threat group dubbed CrazyHunter. The campaign zeroes in on critical infrastructure in Taiwan, specifically heal ...
-
Daily CyberSecurity
Urgent Apple Security Patch: Zero-Day Exploits Target iPhones
Apple has issued urgent security updates across its ecosystem—including iOS, macOS, iPadOS, tvOS, and visionOS—to patch two zero-day vulnerabilities actively exploited in what the company described as ...
-
Cyber Security News
2 Apple Iphone Zero-Day Vulnerabilities Actively Exploited in Extremely Sophisticated Attacks
Apple has released iOS 18.4.1 and iPadOS 18.4.1 to address two critical zero-day vulnerabilities that were actively exploited in highly targeted, sophisticated attacks against specific individuals iPh ...
-
Dark Reading
Multiple Groups Exploit NTLM Flaw in Microsoft Windows
Source: Bits And Splits via ShutterstockMultiple attackers are actively exploiting a recently patched Windows vulnerability that exposes authentication credentials, despite Microsoft releasing a fix f ...