Fixed Intel

Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

AllMalware & Threats467Vulnerabilities239Data Breaches20Ransomware0APT & Threat Actors0Cloud Security0MENA Cybersecurity0Compliance & Frameworks0Tools & Tutorials0Industry News1124
Microsoft to roll out Entra passkeys on Windows in late April
BleepingComputer
Malware & Threats

Microsoft to roll out Entra passkeys on Windows in late April

Microsoft will roll out passkey support for phishing-resistant passwordless authentication to Microsoft Entra‑protected resources from Windows devices starting late April.

BleepingComputerApr 24, 20263m5
New ‘Pack2TheRoot’ flaw gives hackers root Linux access
BleepingComputer
Malware & Threats

New ‘Pack2TheRoot’ flaw gives hackers root Linux access

A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or remove system packages and gain root permissions.

BleepingComputerApr 24, 20263m5
DORA and operational resilience: Credential management as a financial risk control
BleepingComputer
Malware & Threats

DORA and operational resilience: Credential management as a financial risk control

Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach looks like when those controls are missing.

BleepingComputerApr 24, 20269m4
Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks
BleepingComputer
Malware & Threats

Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a cross-site scripting (XSS) security flaw.

BleepingComputerApr 24, 20263m4
Microsoft now lets admins uninstall Copilot on enterprise devices
BleepingComputer
Malware & Threats

Microsoft now lets admins uninstall Copilot on enterprise devices

Microsoft says IT administrators can now uninstall the AI-powered Copilot digital assistant from enterprise devices using a new policy setting, which has become broadly available after the April 2026 Patch Tuesday.

BleepingComputerApr 24, 20262m4
Hackers exploit file upload bug in Breeze Cache WordPress plugin
BleepingComputer
Malware & Threats

Hackers exploit file upload bug in Breeze Cache WordPress plugin

Hackers are actively exploiting a critical vulnerability in the Breeze Cache plugin for WordPress that allows uploading arbitrary files on the server without authentication.

BleepingComputerApr 23, 20262m4
Bitwarden CLI npm package compromised to steal developer credentials
BleepingComputer
Malware & Threats

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

BleepingComputerApr 23, 20264m5
Trigona ransomware attacks use custom exfiltration tool to steal data
BleepingComputer
Malware & Threats

Trigona ransomware attacks use custom exfiltration tool to steal data

Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised environments faster and more efficiently.

BleepingComputerApr 23, 20263m5
New Checkmarx supply-chain breach affects KICS analysis tool
BleepingComputer
Malware & Threats

New Checkmarx supply-chain breach affects KICS analysis tool

Hackers have compromised Docker images, VSCode and Open VSX extensions for the Checkmarx KICS analysis tool to harvest sensitive data from developer environments.

BleepingComputerApr 23, 20263m5
Cosmetics giant Rituals discloses data breach affecting customers
BleepingComputer
Malware & Threats

Cosmetics giant Rituals discloses data breach affecting customers

Dutch cosmetics giant Rituals disclosed a data breach after attackers stole the personal information of an undisclosed number of customers from its "My Rituals" membership database.

BleepingComputerApr 23, 20262m6
Regular Password Resets Aren’t as Safe as You Think
BleepingComputer
Malware & Threats

Regular Password Resets Aren’t as Safe as You Think

Password resets are one of the easiest ways for attackers to bypass security controls. Specops Software shows how helpdesk social engineering turns a seemingly legitimate reset request into full account compromise.

BleepingComputerApr 23, 20265m6
Microsoft: Some Teams users can’t join meetings after Edge update
BleepingComputer
Malware & Threats

Microsoft: Some Teams users can’t join meetings after Edge update

Microsoft confirmed that a recent Microsoft Edge browser update introduced a bug that prevents Windows users from joining Teams meetings.

BleepingComputerApr 23, 20262m6