The Hacker News

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

CVE-2026-41940 exploitation by 2,000 IPs enabled Filemanager backdoor attacks, causing credential theft and persistent access ...

Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ...
Hosted on MSN

CISA warns of mass exploits hitting Linux, cPanel, and iPhones

Within days, CISA added multiple actively exploited vulnerabilities to its Known Exploited Vulnerabilities catalog, including a Linux kernel flaw, a cPanel authentication bypass, and an iOS zero‑day ...

cPanel, WHM emergency update fixes critical auth bypass bug

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be ...

Bug of the year (so far): Nasty cPanel vulnerability probably exploited as a 0-day

Emergency patches are available for a critical vulnerability in cPanel and WHM that allows attackers to bypass authentication ...
Hackaday

This Week In Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, And Backdoored Tools

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...
Hosted on MSN

Cybersecurity warnings, AI chip gains, and blockchain project mark May 6

May 6 saw a convergence of major developments across cybersecurity, AI hardware, and blockchain infrastructure. U.S. cybersecurity officials urged urgent patching of actively exploited Linux and ...
Newstalk ZB

Significant security issues found in major internet infrastructure tools

A lot of these are not household names, but just this week we've seen critical patches released to fix things that would, could, or have, caused real world harm. There's a bug on Linux that allows an ...