may 1, 2026
5 links from the engineering internet.
canonical confirms sustained ddos as 313 team issues extortion demand
canonical's web infrastructure was knocked offline by a ddos from the 313 team, a pro-iran hacktivist group that followed up with an extortion demand. ubuntu.com, the snap store, launchpad, and security apis went down; apt mirrors stayed online.
cpanel auth bypass cve-2026-41940 added to cisa known-exploited list
cisa confirmed on may 1 that cve-2026-41940, a cvss 9.8 authentication bypass in cpanel and whm, is being actively exploited. the flaw allows unauthenticated attackers to take full control of any affected hosting control panel.
anthropic opens claude security to all enterprise customers in public beta
claude security, the codebase vulnerability scanner powered by claude opus 4.7, exits limited preview and becomes available to all enterprise customers. it reasons over entire repos like a security researcher, not just matching known signatures.
microsoft agent 365 reaches general availability at $15 per user per month
microsoft agent 365, the enterprise control plane for observing, governing, and securing ai agents across microsoft and third-party platforms, goes ga on may 1. it ships alongside microsoft 365 e7, the new frontier-tier enterprise suite.
qualcomm reveals dedicated cpu for agentic ai in the data center
qualcomm ceo cristiano amon disclosed a purpose-built data center cpu for agentic workloads, plus a custom chip engagement with an unnamed hyperscaler starting shipments in december. full specs come at the june 24 investor day.