🦉

Errors

There were errors trying to parse these feeds:

  • http://www.understandingwar.org/rss.xml
  • https://fox59.com/feed/

Last updated (Server Time): .

Your Local Time:

all articles

CVE-2018-7159 The HTTP parser in all current versions of Node.js ignores spaces in the `Content-Length` header, allowing input such as `Content-Length: 1 2` to be interpreted as having a value of `12`. The HTTP specification does not allow for spaces in the `Content-Length` value and the Node.js HTTP parser has been brought into line on this particular difference. The security risk of this flaw to Node.js users is considered to be VERY LOW as it is difficult, and may be impossible, to craft an attack that makes use of this flaw in a way that could not already be achieved by supplying an incorrect value for `Content-Length`. Vulnerabilities may exist in user-code that make incorrect assumptions about the potential accuracy of this value compared to the actual length of the data supplied. Node.js users crafting lower-level HTTP utilities are advised to re-check the length of any input supplied after parsing is complete.
CVE-2023-27043 The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.
CVE-2025-65637 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving Writer() unusable and causing application unavailability (DoS). This affects versions < 1.8.3, 1.9.0, and 1.9.2. The issue is fixed in 1.8.3, 1.9.1, and 1.9.3+, where the input is chunked and the writer continues to function even if an error is logged.

Cybersecurity

darkreading (https://www.darkreading.com/rss.xml)
Latest:
BleepingComputer (https://www.bleepingcomputer.com/feed/)
Latest:
Threat Research – Sophos News (https://news.sophos.com/en-us/category/threat-research/feed/)
Latest:
MSRC Security Update Guide (https://api.msrc.microsoft.com/update-guide/rss)
Latest:
CVE-2018-7159 The HTTP parser in all current versions of Node.js ignores spaces in the `Content-Length` header, allowing input such as `Content-Length: 1 2` to be interpreted as having a value of `12`. The HTTP specification does not allow for spaces in the `Content-Length` value and the Node.js HTTP parser has been brought into line on this particular difference. The security risk of this flaw to Node.js users is considered to be VERY LOW as it is difficult, and may be impossible, to craft an attack that makes use of this flaw in a way that could not already be achieved by supplying an incorrect value for `Content-Length`. Vulnerabilities may exist in user-code that make incorrect assumptions about the potential accuracy of this value compared to the actual length of the data supplied. Node.js users crafting lower-level HTTP utilities are advised to re-check the length of any input supplied after parsing is complete.
CVE-2023-27043 The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.
CVE-2025-65637 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving Writer() unusable and causing application unavailability (DoS). This affects versions < 1.8.3, 1.9.0, and 1.9.2. The issue is fixed in 1.8.3, 1.9.1, and 1.9.3+, where the input is chunked and the writer continues to function even if an error is logged.
The Hacker News (https://feeds.feedburner.com/TheHackersNews)
Latest:
Krebs on Security (https://krebsonsecurity.com/feed/)
Latest:
Schneier on Security (https://www.schneier.com/blog/atom.xml)
Latest:
All CISA Advisories (https://www.cisa.gov/cybersecurity-advisories/all.xml)
Latest:
CISA News (https://www.cisa.gov/news.xml)
Latest:
CISA Blog (https://www.cisa.gov/blog.xml)
Latest:
Threatpost (https://threatpost.com/feed/)
Latest:

Threat Intelligence

Unit 42 (https://unit42.paloaltonetworks.com/feed/)
Latest:
SANS Internet Storm Center, InfoCON: green (https://isc.sans.edu/rssfeed_full.xml)
Latest:
Blog (https://www.crowdstrike.com/blog/feed/)
Latest:
Threat Intelligence (https://feeds.feedburner.com/threatintelligence/pvexyqv7v0v)
Latest:

OSINT

bellingcat (https://www.bellingcat.com/feed/)
Latest:
Open Source Intelligence (https://www.reddit.com/r/OSINT.rss)
Latest:

US Breaking News

U.S. Home | Mail Online (https://www.dailymail.co.uk/ushome/index.rss)
Latest:
WSJ.com : U.S. News (https://feeds.content.dowjones.io/public/rss/RSSUSnews)
Latest:
U.S. News Today on Fox News (https://moxie.foxnews.com/google-publisher/us.xml)
Latest:

World Breaking News

WSJ.com: World News (https://feeds.content.dowjones.io/public/rss/RSSWorldNews)
Latest:
BBC News (http://feeds.bbci.co.uk/news/world/rss.xml)
Latest:
Latest World News on Fox News (https://moxie.foxnews.com/google-publisher/world.xml)
Latest:
World news | Mail Online (https://www.dailymail.co.uk/news/worldnews/index.rss)
Latest:

US Politics

Latest Political News on Fox News (https://moxie.foxnews.com/google-publisher/politics.xml)
Latest:
LegiScan US Congress State Feed (https://legiscan.com/gaits/feed/d7f65c53fb3f1a3600e3527ccd716bf8.rss)
Latest:

Business

WSJ.com: US Business (https://feeds.content.dowjones.io/public/rss/WSJcomUSBusiness)
Latest:

World Politics

Foreign Policy (https://foreignpolicy.com/feed/)
Latest:
Atlantic Council (https://www.atlanticcouncil.org/feed/)
Latest:

Department of Defense

Department of War News Feed (https://www.defense.gov/DesktopModules/ArticleCS/RSS.ashx?max=10&ContentType=1&Site=945)
Latest:
News Releases - U.S. Dept. of War (https://www.defense.gov/DesktopModules/ArticleCS/RSS.ashx?ContentType=9&Site=945&max=10)
Latest:
Contracts - U.S. Dept. of War (https://www.defense.gov/DesktopModules/ArticleCS/RSS.ashx?ContentType=400&Site=945&max=10)
Latest:
Department of War Featured Stories Feed (https://www.defense.gov/DesktopModules/ArticleCS/RSS.ashx?ContentType=800&Site=945&max=10)
Latest:
Transcripts - U.S. Dept. of War (https://www.defense.gov/DesktopModules/ArticleCS/RSS.ashx?ContentType=13&Site=945&max=10)
Latest:
Advisories - U.S. Dept. of War (https://www.defense.gov/DesktopModules/ArticleCS/RSS.ashx?ContentType=2&Site=945&max=10)
Latest:

War Monitoring

Defense One - All Content (https://www.defenseone.com/rss/all/)
Latest:

Espionage

NSA News (https://www.nsa.gov/DesktopModules/ArticleCS/RSS.ashx?ContentType=1&Site=1282&max=20)
Latest:
The Cipher Brief Open Source Report (https://feeds.libsyn.com/90836/rss)
Latest:

Space

r/SpaceX, the premier SpaceX discussion community (https://www.reddit.com/r/spacex.rss)
Latest:
NASA (https://www.nasa.gov/news-release/feed/)
Latest:

Indiana

LegiScan Indiana State Feed (https://legiscan.com/gaits/feed/47313d91ae8ca0755b31856c7c8b5cf0.rss)
Latest:
IndyPolitics.Org (https://indypolitics.org/feed/)
Latest:

Italy

Senato.it - DDL S. 1432 - XIX Legislatura (https://www.senato.it/leg/19/BGT/Schede/Ddliter/rss/59017.xml)
Latest:

🦉📚 welcome!

select a feed group to get started