Fixed Intel

Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

AllMalware & Threats468Vulnerabilities240Data Breaches20Ransomware0APT & Threat Actors0Cloud Security0MENA Cybersecurity0Compliance & Frameworks0Tools & Tutorials0Industry News1127
SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites
BleepingComputer
Malware & Threats

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without authentication.

BleepingComputerMar 11, 20263m8
Senate Confirms Joshua Rudd to Lead NSA and US Cyber Command
SecurityWeek
Industry News

Senate Confirms Joshua Rudd to Lead NSA and US Cyber Command

The leadership structure, commonly referred to as the “dual-hat” arrangement, assigns a single individual to oversee both organizations.

SecurityWeekMar 11, 20264m8
CISA orders feds to patch n8n RCE flaw exploited in attacks
BleepingComputer
Malware & Threats

CISA orders feds to patch n8n RCE flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies on Wednesday to patch their systems against an actively exploited n8n vulnerability.

BleepingComputerMar 11, 20263m8
Medtech giant Stryker offline after Iran-linked wiper malware attack
BleepingComputer
Malware & Threats

Medtech giant Stryker offline after Iran-linked wiper malware attack

Leading medical technology company Stryker has been hit by a wiper malware attack claimed by Handala, an Iranian-linked and pro-Palestinian hacktivist group.

BleepingComputerMar 11, 20263m8
New PhantomRaven NPM attack wave steals dev data via 88 packages
BleepingComputer
Malware & Threats

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

BleepingComputerMar 11, 20263m8
Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes
The Hacker News
Industry News

Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes

Researchers show GAN-trained phishing pages can trick Perplexity’s Comet AI browser in under four minutes, exposing a new AI-targeted attack surface.

The Hacker NewsMar 11, 20264m8
Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
Krebs on Security
Data Breaches

Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker

A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports out of Ireland, Stryker's largest hub outside of the United States, said…

Krebs on SecurityMar 11, 20264m8
MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack
SecurityWeek
Industry News

MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack

Stryker was targeted by the Handala group, which claims to have wiped more than 200,000 of the company’s devices.

SecurityWeekMar 11, 20263m8
Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials
The Hacker News
Industry News

Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials

Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure.

The Hacker NewsMar 11, 20264m9
Industry News

Chinese Nexus Actors Shift Focus to Qatar Amid Iranian Conflict

Dark Reading
Industry News

Chinese Nexus Actors Shift Focus to Qatar Amid Iranian Conflict

Two attacks on Qatari entities signal a shift in focus for China-backed actors and demonstrate how quickly they can pivot in response to geopolitical events.

Dark ReadingMar 11, 20261m8
Wiz Joins Google Cloud as Landmark Acquisition Closes
SecurityWeek
Industry News

Wiz Joins Google Cloud as Landmark Acquisition Closes

Google has completed its $32 billion acquisition of the cloud security giant, which will maintain its brand.

SecurityWeekMar 11, 20263m8
CISO Conversations: Aimee Cardwell
SecurityWeek
Industry News

CISO Conversations: Aimee Cardwell

Aimee Cardwell started her career at Netscape, become a VP of engineering at American Express, CISO at UnitedHealth Group, and now CISO in Residence at Transcend.

SecurityWeekMar 11, 202612m8