Weaver E-cology critical bug exploited in attacks since March

SITREP: A critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation software has been actively exploited by hackers since mid-March. This exploitation allows unauthorized execution of discovery commands. TACTICAL ASSESSMENT: The ongoing exploitation of this vulnerability poses significant risks to organizations using Weaver E-cology, potentially leading to data breaches and operational disruptions. This incident highlights the importance of timely software updates and vulnerability management in cybersecurity. PROJECTED VECTORS: It is likely that attackers will continue to exploit this vulnerability until a patch is released, potentially leading to further compromises.