Episode 46 — 04 May 2026
1. Instructure confirms data breach, ShinyHunters claims attack
Source: Bleeping Computer
Educational tech giant Instructure has confirmed that data was stolen in a cyberattack, with the ShinyHunters extortion gang claiming responsibility. Instructure is a U.S.-based education technology company best known for developing Canvas, a widely used learning management...
2. Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks
Source: Bleeping Computer
A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ransomware attacks. This week, an emergency update for WHM and cPanel was released to fix a critical authentication bypass flaw that allows attackers...
3. CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
Source: The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a recently disclosed security flaw impacting various Linux distributions to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The...
4. Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M
Source: The Hacker News
A coordinated international operation involving U.S. and Chinese authorities has arrested at least 276 suspects and shut down nine scam centers used for cryptocurrency investment fraud schemes targeting Americans, resulting in millions of dollars in losses. The crackdown was...
