> TritonInfoSec News
Home / May 03, 2026 / Story
0
#1 BleepingComputer general May 02, 2026 at 21:54 UTC

Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

By Lawrence Abrams

AI Summary

A critical cPanel vulnerability CVE-2026-41940 is being mass-exploited by the "Sorry" ransomware group to compromise websites and encrypt data. CISA has mandated federal agencies patch this flaw by Sunday, with Rapid7 confirming successful exploitation grants attackers complete control over cPanel host systems, configurations, databases, and managed websites.

Read full article → https://www.bleepingcomputer.com/news/security/cri…

Relevance score: 95.0/100

# More from May 03

  1. 2
    Trellix Confirms Source Code Breach With Unauthorized Repository Access The Hacker News
  2. 3
    Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks The Hacker News
  3. 4
    ConsentFix v3 attacks target Azure with automated OAuth abuse BleepingComputer
  4. 5
    New Bluekit Phishing Kit Features AI Assistant SecurityWeek
  5. 6
    1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom SecurityWeek
  6. 7
    Sophisticated Deep#Door Backdoor Enables Espionage, Disruption SecurityWeek
  7. 8
    British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery The Record
  8. 9
    Edu tech firm Instructure discloses cyber incident, probes impact BleepingComputer
  9. 10
    Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge SecurityWeek