Fixed Intel

Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

AllMalware & Threats468Vulnerabilities240Data Breaches20Ransomware0APT & Threat Actors0Cloud Security0MENA Cybersecurity0Compliance & Frameworks0Tools & Tutorials0Industry News1127
Hackers arrested for hijacking and selling 610,000 Roblox accounts
BleepingComputer
Malware & Threats

Hackers arrested for hijacking and selling 610,000 Roblox accounts

The Ukrainian police have arrested three individuals who hacked more than 610,000 Roblox gaming accounts and sold them for a profit of $225,000.

BleepingComputerApr 29, 20263m4
Industry News

Oracle Red Bull Racing Team Revs Up Automation to Boost Security

Dark Reading
Industry News

Oracle Red Bull Racing Team Revs Up Automation to Boost Security

While drivers race to shave off seconds on the track, the team's IT and engineering staff are speeding up how they deliver security.

Dark ReadingApr 29, 20261m4
SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware
The Hacker News
Industry News

SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

The Hacker NewsApr 29, 20263m4
cPanel, WHM emergency update fixes critical auth bypass bug
BleepingComputer
Malware & Threats

cPanel, WHM emergency update fixes critical auth bypass bug

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be exploited to obtain access to the control panel without authentication.

BleepingComputerApr 29, 20263m4
Industry News

Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error

Dark Reading
Industry News

Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error

The emerging ransomware has been deployed against victims of the TeamPCP supply chain attacks, but organizations should think twice before paying for a decryptor.

Dark ReadingApr 29, 20261m4
New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
The Hacker News
Industry News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

The Hacker NewsApr 29, 20269m4
European police dismantles €50 million crypto investment fraud ring
BleepingComputer
Malware & Threats

European police dismantles €50 million crypto investment fraud ring

Austrian and Albanian authorities dismantled a criminal ring accused of running a large-scale cryptocurrency investment fraud operation that caused estimated losses of over €50 million ($58.5 million) to victims worldwide.

BleepingComputerApr 29, 20263m4
Vulnerabilities

Today's Odd Web Requests, (Wed, Apr 29th)

SANS ISC
Vulnerabilities

Today's Odd Web Requests, (Wed, Apr 29th)

Today, two different "new" requests hit our honeypots. Both appear to be recon requests and not associated with specific vulnerabilities. But as always, please let me know if you have additional information

SANS ISCApr 29, 20261m5
Learning from the Vercel breach: Shadow AI & OAuth sprawl
BleepingComputer
Malware & Threats

Learning from the Vercel breach: Shadow AI & OAuth sprawl

A single third-party OAuth integration can become a direct path into your environment. Push explains how the Vercel breach shows a compromised OAuth app can lead to widespread impact across downstream customers.

BleepingComputerApr 29, 20268m5
Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure
SecurityWeek
Industry News

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

The vulnerability allows attackers to read data from a LiteLLM proxy’s database and potentially modify it.

SecurityWeekApr 29, 20262m5
Industry News

Lotus Wiper Attack Targeted Venezuelan Energy Firms, Utilities

Dark Reading
Industry News

Lotus Wiper Attack Targeted Venezuelan Energy Firms, Utilities

An analysis of the destructive malware reveals sophisticated living-off-the-land (LotL) techniques and detailed strategies for the widespread deletion of data.

Dark ReadingApr 29, 20261m5
GitHub fixes RCE flaw that gave access to millions of private repos
BleepingComputer
Malware & Threats

GitHub fixes RCE flaw that gave access to millions of private repos

In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed attackers to access millions of private repositories.

BleepingComputerApr 29, 20263m5