Weaver E-cology critical bug exploited in attacks since March
Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation since mid-March to run discovery commands. [...]
Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation since mid-March to run discovery commands. [...]
Attackers are abusing two remote monitoring and management (RMM) tools to evade detection in a campaign that has impacted over 80 organizations so far.
Atacantes estão explorando uma vulnerabilidade recentemente divulgada no kernel do Linux, que concede acesso root a shells, conforme alertou a agência de cibersegurança dos EUA, CISA. Registrada como CVE-2026-31431 (CVSS ainda não informado) e apelidada de Copy Fail, a falha afet…
The Amazon Simple Email Service (SES) is being increasingly abused to send convincing phishing emails that can bypass standard security filters and render reputation-based blocks ineffective. [...]
Shortly after the authentication-bypass flaw was disclosed multiple proof-of-concept exploits appeared, and one researcher claims there's been zero-day activity for at least a month.
No dia 30 de abril, o desenvolvedor do PyTorch Lightning divulgou que a versão 2.6.3 do pacote, publicada no Python Package Index (PyPI), incluía uma cadeia de execução oculta que baixa e executa um payload em JavaScript. Segundo o comunicado de segurança da Lightning AI, a cadei…
An active phishing campaign has been observed targeting multiple vectors since at least April 2025, with legitimate Remote Monitoring and Management (RMM) software as a way to establish persistent remote access to compromised hosts. The activity, codenamed VENOMOUS#HELPER, has im…
A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a credential-stealing payload targeting browsers, environment files, and cloud services. [...]
Progress Software has released updates to address two security flaws in MOVEit Automation, including a critical bug that could result in an authentication bypass. MOVEit Automation (formerly Central) is a secure, server-based managed file transfer (MFT) solution used to schedule …
Cybersecurity firm Trellix disclosed a data breach after attackers gained access to "a portion" of its source code repository. [...]
Researchers revealed 20-year-old PostgreSQL flaws at Wiz ZeroDay.Cloud event, exposing critical bugs in pgcrypto and prompting urgent patches for database security.
Uma vulnerabilidade crítica (bypass de autenticação) no cPanel e no WHM, registrada com o CVE-2026-41940 (CVSS de 9,8), está sendo explorada em massa para distribuir ransomware e variantes do malware Mirai. O alerta foi publicado em 29 de abril pela cPanel, com análises da watchT…
Uma nova campanha de phishing conseguiu hackear cerca de 30 mil contas do Facebook usando o Google AppSheet, plataforma que automatiza fluxos de trabalho e permite a edição de planilhas, como fachada. Como fazer login no Facebook com verificação em duas etapas Por que meu Fac…
This week, the shadows moved faster than the patches. While most teams were still triaging last month’s alerts, attackers had already turned control panels into kill switches, kernels into open doors, and open-source pipelines into silent delivery systems. The game has shifted fr…
Progress Software warned customers to patch a critical authentication bypass vulnerability in its MOVEit Automation enterprise-grade managed file transfer (MFT) application. [...]
On December 4, 2025, a 17-year-old was arrested in Osaka under Japan’s Unauthorized Access Prohibition Act. The young man had run malicious code to extract the personal data of over 7 million users of Kaikatsu Club, Japan's largest internet cafe chain. When asked, the young man s…
The China-based cybercrime group known as Silver Fox has been linked to a new campaign targeting organizations in Russia and India with a new malware called ABCDoor. The activity involved using phishing emails that mimic correspondence from the Income Tax Department of India in D…
Uma vulnerabilidade crítica de autenticação no cPanel e WHM levou a empresa a liberar atualizações urgentes para todas as versões atualmente suportadas da plataforma. O problema, agora rastreado como CVE-2026-41940, recebeu CVSS 9.8 e pode permitir que invasores remotos não auten…
More than 1,600 socially engineered messages from the China-backed advanced persistent threat (APT) group target various sectors to deliver the previously undocumented ABCDoor backdoor, ValleyRAT, and other malware.
CISA has warned that threat actors have started exploiting the "Copy Fail" Linux security vulnerability in the wild, one day after Theori researchers disclosed it and shared a proof-of-concept (PoC) exploit. [...]