CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
TheCyberThrone
CVE-2025-30065 impacts Apache Parquet
Apache Parquet is a widely adopted columnar storage file format optimized for big data and analytics applications. Its efficient compression and compatibility with big data frameworks like Apache Hado ...
-
InfoSec Write-ups
CVE-2024–21412(CVSS 8.1) Alert: Hackers Bypass (Exploit)Windows SmartScreen!
Cyber threats are constantly evolving, and 2024 is no exception. Among the most concerning vulnerabilities is CVE-2024–21412, a flaw in Windows SmartScreen that has been actively exploited by attacker ...
-
Cyber Security News
“IngressNightmare” Critical RCE Vulnerabilities in Kubernetes NGINX Clusters Let Attackers Gain Full Control
A recently discovered set of vulnerabilities, dubbed “IngressNightmare,” found in Ingress NGINX Controller, exposing clusters to unauthenticated remote code execution (RCE). Kubernetes dominates conta ...
-
TheCyberThrone
CISA adds Ivanti Connect Secure to KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Ivanti Connect Secure to its Known Exploited Vulnerabilities (KEV) Catalog. This vulnerability, identi ...
-
Daily CyberSecurity
50K+ WordPress Sites Exposed: Admin Takeover via Uncanny Automator
A vulnerability has surfaced in the popular WordPress plugin, Uncanny Automator, leaving over 50,000 websites potentially exposed to complete compromise. Tracked as CVE-2025-2075, this critical flaw, ...
-
Daily CyberSecurity
Windows 11 Hotpatch: Enterprise Only, Reboot-Free Updates
Microsoft previously introduced Hotpatching updates for Windows 11 Enterprise users—a mechanism that allows critical security patches to take effect immediately without requiring a system reboot. This ...
-
Cyber Security News
CISA Adds Actively Exploits Ivanti Connect Secure Vulnerability in Known Exploited Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-22457, a critical vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA Gateways, to its Known Exploited Vu ...
-
Cyber Security News
Ivanti Connect Secure RCE Vulnerability Actively Exploited in the Wild – Apply Patch Now!
Ivanti has disclosed a critical vulnerability, CVE-2025-22457, affecting its Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways products that are actively exploited in the wi ...
-
SentinelOne
IngressNightmare | Critical Unauthenticated RCE Vulnerabilities in Kubernetes Ingress NGINX
As more organizations adopt containerization, Kubernetes adoption is at an all-time high. A key component to any Kubernetes cluster is allowing and managing external traffic to the services organizati ...
-
Cyber Security News
EncryptHub Ransomware Unmasked Using ChatGPT & OPSEC Mistakes
A notorious threat actor operating under the alias “EncryptHub” has been exposed due to a series of operational security failures and unconventional use of AI tools. This Ukrainian cybercriminal, who ...