CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit
Network Security / Vulnerability Fortinet has revealed that threat actors have found a way to maintain read-only access to vulnerable FortiGate devices even after the initial access vector used to bre ...
-
Help Net Security
Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices
A threat actor that has been using known old FortiOS vulnerabilities to breach FortiGate devices for years has also been leveraging a clever trick to maintain undetected read-only access to them after ...
-
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto
BentoML Vulnerability Allows Remote Code Execution on AI Servers
TL;DR: A critical deserialization vulnerability (CVSS 9.8 – CVE-2025-27520) in BentoML (v1.3.8–1.4.2) lets attackers execute remote code without authentication. Discovered by Checkmarx Zero. Upgrade t ...
-
BleepingComputer
Fortinet: Hackers retain access to patched FortiGate VPNs using symlinks
Fortinet warns that threat actors use a post-exploitation technique that helps them maintain read-only access to previously compromised FortiGate VPN devices even after the original attack vector was ...
-
security.nl
Microsoft adviseert Windowsgebruikers inetpub-map niet te verwijderen
Microsoft adviseert Windowsgebruikers om een map genaamd 'inetpub' niet te verwijderen. De map wordt aangemaakt na de installatie van een beveiligingsupdate voor een kwetsbaarheid aangeduid als CVE-20 ...
-
Cyber Security News
CISA Releases 10 ICS Advisories Covering Vulnerabilities & Exploits
The Cybersecurity and Infrastructure Security Agency (CISA) has issued ten new advisories addressing vulnerabilities in Industrial Control Systems (ICS). These advisories aim to inform stakeholders ab ...
-
BleepingComputer
Microsoft: Windows 'inetpub' folder created by security fix, don’t delete
Microsoft has now confirmed that an April 2025 Windows security update is creating a new empty "inetpub" folder and warned users not to delete it. This folder is typically used by Microsoft's Internet ...
-
security.nl
Fortinet waarschuwt voor 'read-only aanval' op FortiGate-firewalls
Fortinet waarschuwt klanten voor een nieuwe techniek waarvan aanvallers gebruikmaken en ervoor zorgt dat ze read-only toegang tot FortiGate-firewalls behouden. Volgens het bedrijf maken de aanvallers ...
-
Dark Reading
11 Bugs Found in Perplexity AI's Chatbot Android App
Source: Sipa USA via Alamy Stock PhotoResearchers have identified nearly a dozen security issues in the research-oriented AI chatbot Perplexity.Perplexity was released one week after ChatGPT, right as ...
-
Cyber Security News
WordPress Plugin Vulnerability Exposes Sites to Critical File Inclusion Attacks
A severe security vulnerability has been discovered in the popular InstaWP Connect WordPress plugin, potentially exposing thousands of websites to remote attacks. Security researchers at Wordfence ide ...