CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
WatchGuard 0-day Vulnerability Exploited in the Wild to Hijack Firewalls
An urgent security update has been released to fix a critical zero-day vulnerability in WatchGuard Firebox firewalls. With warnings that hackers are already actively exploiting the flaw in the wild to ...
-
The Hacker News
New UEFI Flaw Enables Early-Boot DMA Attacks on ASRock, ASUS, GIGABYTE, MSI Motherboards
Dec 19, 2025Ravie LakshmananFirmware Security / Vulnerability Certain motherboard models from vendors like ASRock, ASUSTeK Computer, GIGABYTE, and MSI are affected by a security vulnerability that l ...
-
CybersecurityNews
Clop Ransomware Group Exploiting Gladinet CentreStack Servers to Steal Data
The Clop ransomware group has launched a new data extortion campaign targeting Internet-facing Gladinet CentreStack file servers, marking another chapter in the threat actor’s pattern of exploiting fi ...
-
Daily CyberSecurity
Rust’s First Breach: CVE-2025-68260 Marks the First Rust Vulnerability in the Linux Kernel
A vulnerability designated CVE-2025-68260 has been fixed in the Linux kernel—the first CVE formally assigned to Rust code in the mainline kernel. Greg Kroah-Hartman reported the issue, which affects t ...
-
CybersecurityNews
OpenAI GPT-5.2-Codex Supercharges Agentic Coding and Vulnerability Detection
OpenAI has unveiled GPT-5.2-Codex, a cutting-edge model optimized for agentic coding and enhanced cybersecurity tasks. The release highlights breakthroughs in handling complex software engineering and ...
-
TheCyberThrone
CVE-2025-40602: SonicWall SMA1000 Zero-Day Bug
December 19, 2025SonicWall SMA 1000 and SMA 100 series appliances face a critical local privilege escalation vulnerability, CVE-2025-40602, actively exploited in the wild and often chained with other ...
-
Daily CyberSecurity
Visualizations Weaponized: New Kibana Flaw Allows XSS Attacks via Vega Charts
Elastic has issued important security updates for Kibana, the popular data visualization dashboard for the Elastic Stack, after discovering a high-severity vulnerability that allows attackers to turn ...
-
Daily CyberSecurity
Log4j’s Security Blind Spot: New TLS Flaw Lets Attackers Intercept Sensitive Logs Despite Encryption
The Apache Software Foundation has released a security update for its widely used Log4j logging library, addressing a moderate-severity vulnerability that could allow attackers to intercept sensitive ...
-
Daily CyberSecurity
WatchGuard Under Siege: Critical CVSS 9.3 Zero-Day Exploited in the Wild to Hijack Corporate Firewalls
A critical zero-day vulnerability has shattered the security perimeter of WatchGuard Firebox appliances, forcing network administrators into a race against time. Tracked as CVE-2025-14733, the flaw ca ...
-
Daily CyberSecurity
Kubernetes Alert: Headlamp Flaw (CVE-2025-14269) Lets Unauthenticated Users Hijack Helm Clusters
A high-severity vulnerability has been discovered in Headlamp, a popular extensible web UI for Kubernetes, potentially allowing unauthenticated attackers to hijack cluster operations. Tracked as CVE-2 ...