New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

Published on March 19, 2026

A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 installations, allowing unauthenticated code execution and account takeover. [...]

Continue reading on website
Other news

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

March 19, 2026
Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard."Speagle is designed to surreptitiously harvest sensitive information from infected computers and transmit it to a Cobra DocGuard server that has been compromised by the attackers, masking the data exfiltration process as legitimate

Navia discloses data breach impacting 2.7 million people

March 19, 2026
Navia Benefit Solutions, Inc. (Navia) is informing nearly 2.7 million individuals of a data breach that exposed their sensitive information to attackers. [...]