Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

Published on May 2, 2026

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ransomware attacks. [...]

Continue reading on website
Other news

ConsentFix v3 attacks target Azure with automated OAuth abuse

May 2, 2026
A new attack type, dubbed ConsentFix v3, has been circulating on hacker forums, building on the previous technique by adding automation and scaling potential. [...]

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

May 3, 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a recently disclosed security flaw impacting various Linux distributions to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.The vulnerability, tracked as CVE-2026-31431 (CVSS score: 7.8), is a case of local privilege escalation (LPE) flaw that could allow an