Hackers are actively exploiting a bug in cPanel, used by millions of websites

Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...

New Linux ‘Copy Fail’ flaw gives hackers root on major distros

An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels ...
PCQuest

7 best hacking tools in 2026 every ethical hacker should know

See the top ethical hacking tools for 2026, from Nmap to Burp Suite, and learn how security teams test, audit, and defend ...

Critical cPanel and WHM bug exploited as a zero-day, PoC now available

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in ...
Microsoft

Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations

The financially motivated cybercriminal actor tracked by Microsoft Threat Intelligence as Storm-1175 operates high-velocity ransomware campaigns that weaponize N-days, targeting vulnerable, web-facing ...
The Hacker News

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

Threat actors are increasingly using HTTP cookies as a control channel for PHP-based web shells on Linux servers and to achieve remote code execution, according to findings from the Microsoft Defender ...
Hosted on MSN

Fear, threats, fake rituals to exploit women: Inside Ashok Kharat's web of coercion

A self-proclaimed numerologist and godman, Ashok Kharat, also known as 'Captain' Kharat, was arrested on Thursday by the Nashik Crime Branch for allegedly raping a woman and exploiting others under ...
GitHub

jetty_web_inf_disclosure.rb

9.4.37.v20210219, 9.4.38.v20210224 and 9.4.37-9.4.42, 10.0.1-10.0.5, 11.0.1-11.0.5. Exploitation can obtain any file in the WEB-INF folder, but web.xml is most likely to have information of value.
GitHub

weblogic_deserialize_badattr_extcomp.rb

n3mu3lw / metasploit Public forked from rapid7/metasploit-framework Notifications You must be signed in to change notification settings Fork 0 Star 0 Code Pull requests0 Actions Projects Security0 ...
techworm.net

Hackers Offer Windows Exploit For $220,000 On Dark Web

A serious Windows vulnerability is reportedly being sold on the dark web for $220,000, highlighting the growing market for cyberattack tools and exploits. The exploit targets Windows Remote Desktop ...
The Hacker News

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

High-value organizations located in South, Southeast, and East Asia have been targeted by a Chinese threat actor as part of a years-long campaign. The activity, which has targeted aviation, energy, ...
TechCrunch

Anthropic’s Claude found 22 vulnerabilities in Firefox over two weeks

In a recent security partnership with Mozilla, Anthropic found 22 separate vulnerabilities in Firefox — 14 of them classified as “high-severity.” Most of the bugs have been fixed in Firefox 148 (the ...