A critical vulnerability in Weaver E-cology office automation software has been actively exploited by attackers since mid-March. The flaw, tracked as CVE-2026-22679, allows hackers to execute discovery commands on affected systems.
Security researchers have identified ongoing attacks leveraging CVE-2026-22679, a critical vulnerability in Weaver E-cology, widely used office automation software. The exploitation campaign began in mid-March, with threat actors using the flaw to run reconnaissance commands on compromised systems.
The vulnerability enables attackers to execute arbitrary commands, allowing them to map network environments and gather intelligence about target systems. This discovery phase typically precedes more damaging attacks, including data exfiltration or lateral movement within organizational networks.
Weaver E-cology is commonly deployed in enterprise environments for document management and workflow automation. The broad adoption increases the potential impact of the vulnerability, affecting numerous organizations across multiple sectors.
Security teams should treat this as a priority issue. Organizations using Weaver E-cology should immediately check for signs of compromise, including unusual command execution patterns and network reconnaissance activity originating from systems running the software.
Vendor patches addressing CVE-2026-22679 are available. Organizations should deploy updates without delay. In environments where immediate patching is not feasible, implementing network segmentation and restricting access to affected systems can reduce exposure.
The extended timeframe of exploitation—from March onward—suggests that some organizations may already have been compromised without detection. Forensic investigation and log analysis are recommended to identify unauthorized access or command execution.
This incident underscores the importance of timely vulnerability patching and continuous monitoring of critical business applications. Security teams should review their patch management processes to ensure faster deployment of critical fixes.
Grok CLI experienced a critical bug that caused it to upload entire home directories to Google Cloud Storage. The issue sparked significant discussion in the developer community about data handling practices.
Aylo, Pornhub's parent company, will restore access to the site in the UK through Apple's device-level age verification system in iOS 26.4. The move requires users to complete age verification before accessing the platform.
Australia's eSafety Commissioner has identified significant gaps in how major tech platforms address online sexual extortion. Young men are reporting sextortion at higher rates than any other demographic, with over 2,000 complaints filed in just six months.
Angelo Martino, a ransomware negotiator, was sentenced to 70 months in prison for colluding with attackers to defraud victims. Martino helped orchestrate scams that extracted over $75 million from ransomware victims.