A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environments.
The attack exploits CVE-2026-41940, a vulnerability impacting cPanel and WebHost Manager (WHM) that could result in an authentication bypass and allow remote attackers to gain elevated control of the controlRead More
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor [email protected] (The Hacker News)
by
Tags: