Fixed Intel
Newspaper

Industry News

General cybersecurity industry news, market trends, and analysis

Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API
The Hacker News
Industry News

Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API

CVE-2026-22679 exploited via debug endpoint in Weaver E-cology before 20260312, enabling RCE and system compromise.

The Hacker News3d ago2m1
Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries
The Hacker News
Industry News

Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries

Microsoft disclosed a credential theft campaign targeting 35,000+ users at 13,000+ organizations across 26 countries.

The Hacker News3d ago6m1
Industry News

Physical Cargo Theft Gets a Boost From Cybercriminals

Dark Reading
Industry News

Physical Cargo Theft Gets a Boost From Cybercriminals

Cargo theft is no longer about small groups of criminals operating on the ground, but transnational cybercriminal syndicates using access to supply chain systems to reroute goods.

Dark Reading3d ago1m1
Industry News

RMM Tools Fuel Stealthy Phishing Campaign

Dark Reading
Industry News

RMM Tools Fuel Stealthy Phishing Campaign

Attackers are abusing two remote monitoring and management (RMM) tools to evade detection in a campaign that has impacted over 80 organizations so far.

Dark Reading3d ago1m1
Industry News

Exploit Cyber-Frenzy Threatens Millions via Critical cPanel Vulnerability

Dark Reading
Industry News

Exploit Cyber-Frenzy Threatens Millions via Critical cPanel Vulnerability

Shortly after the authentication-bypass flaw was disclosed multiple proof-of-concept exploits appeared, and one researcher claims there's been zero-day activity for at least a month.

Dark Reading3d ago1m1
Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks
SecurityWeek
Industry News

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks

Cisco on Monday announced its intent to acquire Astrix Security, a startup focused on securing non-human identities (NHIs) such as API keys, service accounts, and OAuth tokens increasingly used by applications and AI agents. In a blog post, Cisco said the acquisition is aimed at extending zero tr...

SecurityWeek3d ago2m1
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
The Hacker News
Industry News

Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools

VENOMOUS#HELPER phishing campaign active since April 2025 has impacted 80+ organizations, mainly in the U.S., using SSA-themed lures.

The Hacker News3d ago3m1
Trellix Source Code Repository Breached
SecurityWeek
Industry News

Trellix Source Code Repository Breached

The cybersecurity firm’s investigation has not found any impact on its source code release or distribution process.

SecurityWeek3d ago2m1
Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass
The Hacker News
Industry News

Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass

MOVEit Automation flaws (CVE-2026-4670, CVE-2026-5174) enable bypass and escalation, risking enterprise data exposure.

The Hacker News3d ago2m1
⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More
The Hacker News
Industry News

⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More

Weekly cybersecurity news: Critical cPanel flaw under attack, Copy Fail Linux privilege escalation, TeamPCP supply chain campaign, GitHub RCE & major

The Hacker News3d ago22m1
Cybersecurity M&A Roundup: 33 Deals Announced in April 2026
SecurityWeek
Industry News

Cybersecurity M&A Roundup: 33 Deals Announced in April 2026

Significant cybersecurity M&A deals announced by Airbus, Cyera, Fortra, Palo Alto Networks, Silverfort, and Socket.

SecurityWeek3d ago4m1
DigiCert Revokes Certificates After Support Portal Hack
SecurityWeek
Industry News

DigiCert Revokes Certificates After Support Portal Hack

Hackers delivered malware via a customer chat channel, infected an analyst’s system, and accessed the internal support portal.

SecurityWeek3d ago2m1