{"id":238441,"date":"2026-05-03T04:00:00","date_gmt":"2026-05-03T08:00:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/03\/week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months\/"},"modified":"2026-05-03T04:25:07","modified_gmt":"2026-05-03T08:25:07","slug":"week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/03\/week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months\/","title":{"rendered":"Week in review: High-severity LPE vulnerability in the Linux kernel, cPanel 0-day exploited for months"},"content":{"rendered":"<p><a href=\"https:\/\/www.helpnetsecurity.com\/2026\/05\/03\/week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months\/\">Week in review: High-severity LPE vulnerability in the Linux kernel, cPanel 0-day exploited for months<\/a><\/p>\n<p><a href=\"https:\/\/www.helpnetsecurity.com\/2026\/05\/03\/week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months\/\">https:\/\/www.helpnetsecurity.com\/2026\/05\/03\/week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-03 04:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.helpnetsecurity.com\">www.helpnetsecurity.com<\/a><\/p>\n<p>Here\u2019s an overview of some of last week\u2019s most interesting news, articles, interviews and videos:<\/p>\n<\/p>\n<p><strong>The AI criminal mastermind is already hiring on gig platforms<\/strong><br \/>Labor-hire platforms let anyone with a credit card post a task and pay a stranger to complete it. The RentAHuman platform extends that model to AI agents through a Model Context Protocol server, allowing an agent to post gigs directly. Listed tasks include attending in-person meetings, photographing locations, delivering items, and surveying physical sites.<\/p>\n<p><strong>Even cybersecurity researchers are exposing secrets in their arXiv LaTeX source<\/strong><br \/>Researchers submit papers to arXiv daily, often including LaTeX source files alongside PDFs. About 93% of submissions contain these files, which may include drafts, comments, figures, and leftover project data. A study from RWTH Aachen University, to be presented at the 2026 IEEE Symposium on Security and Privacy, analyzed 2.7 million arXiv submissions since 1991. It found that 88% contained material not intended for public release.<\/p>\n<p><strong>Open-source IPFire DNS Firewall blocks malware and phishing at the resolver<\/strong><br \/>The IPFire project shipped Core Update 201 for its 2.29 release line, bringing DNS-layer domain blocking into the open-source firewall distribution. The update replaces two components that many IPFire operators had paired with the system for years, the built-in URL Filter and external Pi-hole deployments, by handling blocklist enforcement directly inside the firewall\u2019s DNS proxy.<\/p>\n<p><strong>US state privacy fines reached $3.425 billion in 2025<\/strong><br \/>State privacy regulators across the United States collected $3.425 billion in privacy-related fines from companies in 2025. Gartner said the upward trend is expected to accelerate through 2028. Annual cumulative fines stood at $1.827 billion in 2024, putting the 2025 result at nearly double the previous year\u2019s level.<\/p>\n<p><strong>The Exchange Online security controls organizations keep getting wrong<\/strong><br \/>In this Help Net Security interview, Scott&#8230;<\/p>\n<p><a href=\"https:\/\/www.helpnetsecurity.com\/2026\/05\/03\/week-in-review-high-severity-lpe-vulnerability-in-the-linux-kernel-cpanel-0-day-exploited-for-months\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Week in review: High-severity LPE vulnerability in the Linux kernel, cPanel 0-day exploited for months&#8230;<\/p>\n","protected":false},"author":1,"featured_media":238442,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/img.helpnetsecurity.com\/wp-content\/uploads\/2024\/03\/25124830\/cybersecurity-week-review-1-1500.webp","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[71,32,25,57,27],"class_list":["post-238441","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-linux","tag-malware","tag-phishing","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/238441"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=238441"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/238441\/revisions"}],"predecessor-version":[{"id":238443,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/238441\/revisions\/238443"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/238442"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=238441"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=238441"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=238441"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}