A threat actor named Mr_Rot13 has been attributed to the
exploitation of a recently disclosed critical cPanel flaw to deploy
a backdoor codenamed Filemanager on compromised environments. The
attack exploits CVE-2026-41940, a vulnerability impacting cPanel
and WebHost Manager (WHM) that could result in an authentication
bypass and allow remote attackers to gain elevated control of the
control
Read more https://thehackernews.com/2026/05/cpanel-cve-2026-41940-under-active.html
