Security news.
Today's security news highlights multiple active threats, including the compromise of JDownloader's website to distribute Python RAT malware and a fake OpenAI repository on Hugging Face pushing infostealers. Additionally, critical vulnerabilities in cPanel, WHM, and Ivanti EPMM require immediate patching, with CISA add
JDownloader Site Hacked to Distribute Python RAT
The official JDownloader website was compromised to serve malicious Windows and Linux installers, with the Windows version deploying a Python-based Remote Access Trojan.
Fake OpenAI Hugging Face Repo Pushes Infostealer
A malicious repository impersonating OpenAI's "Privacy Filter" project on Hugging Face's trending list delivered information-stealing malware to Windows users.
cPanel, WHM Release Fixes for Three New Vulnerabilities
cPanel has issued updates to address three vulnerabilities (including CVE-2026-29201) in cPanel and Web Host Manager (WHM) that could lead to privilege escalation, code execution, and denial-of-service.
ShinyHunters Claims Second Attack Against Instructure (Canvas)
The ShinyHunters group claims another attack on edtech company Instructure, affecting its Canvas learning management system and potentially exposing PII of hundreds of millions.
NVIDIA Confirms GeForce NOW Data Breach
NVIDIA has confirmed a data breach affecting GeForce NOW users, specifically impacting Armenian accounts.
CISA Mandates Patch for Ivanti EPMM Zero-Day
CISA has ordered U.S. federal agencies to patch a high-severity Ivanti Endpoint Manager Mobile (EPMM) vulnerability (CVE-2026-6973) within four days, as it is actively exploited as a zero-day.
New Linux Local Privilege Escalation Vulnerability "Dirty Frag"
A new local privilege escalation (LPE) vulnerability in the Linux kernel, dubbed "Dirty Frag," has been disclosed, allowing local attackers to gain root privileges on most major Linux distributions.
Polish Security Agency Reports ICS Breaches at Five Water Treatment Plants
The Polish security agency has reported breaches at five water treatment plants, where hackers gained the ability to modify operational parameters, posing a direct risk to public water supply.