Cyber Security News

## Hacking Editorial Brief — May 2, 2026

A critical authentication bypass vulnerability in cPanel (CVE-2026-41940) was exploited in the wild for over two months before patches became available, giving attackers full administrative control over affected hosting systems since late February. The zero-day highlights ongoing challenges in coordinating responsible disclosure with active exploitation. Separately, a Russian national pleaded guilty to charges related to intrusions targeting critical oil and gas infrastructure across the United States, Ukraine, and other countries, resulting in operational damage to industrial control systems. The case underscores continuing threats to energy sector operational technology from state-aligned actors.

U.S. cybersecurity officials are considering significantly reduced remediation deadlines for critical vulnerabilities in government systems, driven by concerns that AI-powered capabilities are accelerating threat actor reconnaissance and exploit development. Meanwhile, South Korean financial institutions are overhauling security frameworks in response to AI systems like Mythos demonstrating capability to autonomously identify software vulnerabilities and generate working exploit code. Two cybercrime groups have been observed conducting rapid SaaS extortion campaigns using voice phishing combined with single sign-on abuse to gain initial access, with activity tracked since at least October. Medical device manufacturer Medtronic faces multiple federal lawsuits following a hacking incident disclosed April 24.

Sources: Reuters · Chosun Biz · Bloomberg · The Hacker News · Help Net Security