Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

cato networks

Threat Brief: CVE-2026-41940: Critical cPanel & WHM Authentication Bypass Actively Exploited in the Wild

May 3, 2026 By Dr. Guy Waizel In Cato Networks
CVE-2026-41940 is a critical authentication bypass vulnerability in cPanel & WHM, including DNSOnly, and WP Squared. The issue affects cPanel software versions after 11.40 and can allow an unauthenticated remote attacker to gain unauthorized access to exposed hosting control panels. cPanel released patched versions and published official remediation and detection guidance.
Read Post
fidelis security

What is XDR (Extended Detection and Response) in Cybersecurity? A Quick Guide

May 3, 2026 By Fidelis Security In Fidelis Security
Extended Detection and Response (XDR) is a comprehensive security solution that integrates various security products and data into a simplified, unified system. XDR security combines prevention, detection, investigation, and response to provide a holistic cloud-based security approach.
Read Post
mend

PhantomRaven Wave 5: New Undocumented NPM Supply Chain Campaign Targets DeFi, Cloud, and AI Developers

May 3, 2026 By Tom Abai In Mend
Mend’s security research team has identified a previously undocumented fifth wave of the PhantomRaven campaign, an ongoing NPM supply chain attack that has been stealing developer credentials and secrets since August 2025. This new wave uses a fresh command-and-control server, 33 new malicious packages, and a more sophisticated three-stage payload chain.
Read Post
cycognito

Emerging Threat: (CVE-2026-41940) cPanel & WHM Authentication Bypass via CRLF Injection

May 3, 2026 By Igal Zeifman In CyCognito
CVE-2026-41940 is a pre-authentication remote authentication bypass in cPanel and WHM caused by a CRLF (Carriage Return Line Feed) injection in the login and session handling logic. An unauthenticated remote attacker can inject raw \r\n characters into a malicious basic authorization header, which cpsrvd then writes into a session file without sanitization.
Read Post

Elastic + Azure: The scalable security stack driving better outcomes

May 1, 2026 By Elastic In Elastic
Discover how implementing Elastic helped drive measurable improvements across key security metrics, from performance to client satisfaction. In this video, Tyler Hopperton, Chief Information Security Officer at Coretek, shares how a flexible, data-driven approach to cybersecurity, combined with Elastic and Microsoft Azure, enables teams to better understand, normalize, and act on critical security data. Learn how this partnership is helping modern organizations adapt to evolving threats and build more effective security operations.
View Video

Treat AI Like an Employee #ai #aisecurity

May 1, 2026 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

AI Sales Avatar Hijacked by Prompt Injection on Livestream #promptinjection #hacked #hacker

May 1, 2026 By Mend In Mend
Mend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development -– using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.