Instructure reaches 'agreement' with ShinyHunters to stop data leak

What is the Palo Alto Networks PAN-OS zero-day exploited in May 2026?

A critical pre-authentication RCE in Palo Alto Networks PAN-OS firewalls, tracked as CVE-XXXX, has been exploited in the wild since April 2026. The flaw affects PAN-OS versions [range] and carries a CVSS of [X]. Palo Alto Networks released hotfixes on [date]; unpatched internet-facing firewalls should be patched immediately or taken offline.

How are attackers using AI to develop zero-day exploits in 2026?

Google disclosed in May 2026 that a state-aligned threat actor used [AI system] to develop a working zero-day exploit against [web admin tool], the first publicly confirmed case of an LLM producing an operational vulnerability chain. The exploit targeted [component] and was deployed against [victim profile]. Defenders should expect AI-accelerated exploit development to compress patch windows further.

What is the Ivanti EPMM zero-day CISA gave feds four days to patch?

CISA gave federal agencies until [date] — four days from disclosure — to patch a zero-day in Ivanti Endpoint Manager Mobile tracked as CVE-XXXX. The flaw enables [mechanism] against EPMM versions [range] and is confirmed exploited in attacks targeting government and enterprise mobile fleets. Ivanti has released fixed builds in version [X].

What is the cPanel & WHM zero-day CVE-2026-41940 and how do I patch it?

CVE-2026-41940 is a critical authentication bypass in cPanel and WHM, exploited as a zero-day since late February 2026 and used in 'Sorry' ransomware attacks against shared hosting environments. A public proof-of-concept is now available. cPanel released a fix in version [X]; all internet-facing cPanel installations should be patched within 24 hours.