Families Sue OpenAI, Apple Warns Mac Mini Shortages May Persist for Months

Hackers Exploit cPanel CVE-2026-41940 CRLF Injection Flaw on Web Servers

• Rapid7 and watchTowr Labs documented exploitation of the authentication bypass.
• The flaw uses CRLF injection in session loading plus cache quirks for bypass.
• CISA added CVE-2026-41940 to its Known Exploited Vulnerabilities list.

UNITED STATES, May 02 (TNGB) – Researchers from Rapid7 and watchTowr Labs identified active exploitation of cPanel CVE-2026-41940 authentication bypass on web servers. The vulnerability relies on CRLF injection during session loading and saving combined with cache and encryption quirks that enable unauthorized access. CISA confirmed the issue by adding it to the Known Exploited Vulnerabilities catalog earlier in 2026.

Web hosting providers must patch cPanel systems promptly to block ongoing exploitation attempts.

Sainsbury’s Deploys Facewatch Targeted Facial Recognition in Select London Stores

• The system targets known offenders via watchlist in specific stores.
• Human review occurs before any alerts are acted upon by staff.
• Privacy groups criticize the deployment in London locations like Elephant & Castle.

LONDON, May 02 (TNGB) – Sainsbury’s has rolled out the Facewatch facial recognition system in several London supermarkets including Elephant & Castle to identify known offenders on a targeted watchlist. The technology reportedly matches faces against the list and routes potential matches for human review before staff receive alerts. Critics from privacy organizations argue the setup still raises consent and surveillance concerns in public retail spaces.

Targeted facial recognition in retail stores continues to spark debate over privacy versus security needs.

FCC Advances Proposal to Ban Chinese Labs from Certifying US Electronics

• The April 30 vote advanced a rulemaking to prohibit Chinese certification labs.
• The proposal aims to streamline the US certification process for devices.
• National security concerns underpin the move affecting many imported products.

WASHINGTON D.C., May 02 (TNGB) – The Federal Communications Commission voted unanimously on April 30 to advance a proposal banning Chinese laboratories from certifying electronics for the US market. The rulemaking reportedly seeks to address national security risks while creating a more efficient domestic certification pathway. Officials note the change could impact a large share of devices entering the country once finalized.

The FCC proposal signals stronger scrutiny of foreign supply chains in electronics certification.

Ask.com Ends Search Service Operations After Nearly 25 Years

• The IAC owned platform has ceased its core search functions.
• The shutdown follows years of declining usage in the search market.
• Users now see a closure notice instead of active search results.

UNITED STATES, May 02 (TNGB) – Ask.com has permanently shut down its search service operations after approximately twenty five years in the market. The company owned by IAC reportedly made the decision amid sustained drops in user engagement and relevance. Visitors to the site now encounter a message announcing the end of the service rather than functional search tools.

The closure of Ask.com marks another chapter in the evolution of online search engines.

ConsentFix v3 Campaigns Use Social Engineering to Abuse Azure OAuth

• Attackers rely on user interaction like copy paste of auth codes.
• Campaigns combine social engineering with some automated follow up steps.
• Organizations face risks when victims are tricked into granting permissions.

UNITED STATES, May 02 (TNGB) – Security firms including Push Security and Microsoft have tracked ConsentFix v3 campaigns targeting Azure environments through social engineering tactics. Attackers reportedly trick users into copying and pasting authentication codes or URLs that grant excessive OAuth permissions. While some elements of the campaigns show automation the core vector requires victim action to succeed.

Users should verify OAuth requests carefully to avoid falling victim to consent abuse schemes.

Tesla Sells Chinese Made Model 3 at Lowest Price Ever in Canada

• The electric vehicle manufacturer offers imported Model 3 units from China.
• Canadian buyers can now purchase at a record low starting price.
• This move expands Tesla presence in the North American market.

CANADA, May 02 (TNGB) – Tesla has begun selling Chinese manufactured Model 3 vehicles in Canada at prices lower than ever before for the model. The company reportedly aims to increase market share by leveraging lower production costs from its Shanghai facility. Local buyers gain access to the popular sedan with updated features at competitive rates.

Lower prices on Chinese built Teslas could accelerate electric vehicle adoption across Canada.

Families Sue OpenAI Over 2025 Suicides and February 2026 School Shooting

• Suits arise from 2025 teen suicides and the February 10 Tumbler Ridge shooting.
• Plaintiffs demand improved age verification and parental controls on ChatGPT.
• Claims focus on negligence and failure to report safety concerns.

UNITED STATES, May 02 (TNGB) – Families linked to 2025 teen suicide cases and the February 10 2026 Tumbler Ridge British Columbia school shooting have sued OpenAI. The complaints reportedly allege negligence in handling user safety and failure to implement adequate reporting mechanisms. Legal teams seek enhanced age verification features and parental controls to prevent future incidents.

These lawsuits underscore demands for stronger safety features in widely used AI chat platforms.

Early Access Game Windrose Causes High SSD Write Rates for Players

• The pirate survival game generates excessive disk writes during gameplay.
• Users report 50 to 60 gigabytes per hour with some exceeding 100 gigabytes.
• No official patch has resolved the storage impact in recent updates.

UNITED STATES, May 02 (TNGB) – Players of the early access pirate survival game Windrose released in April 2026 have reported unusually high solid state drive write operations. Community discussions on Reddit and Steam indicate write rates of 50 to 60 gigabytes per hour in some cases with total lifespan loss over 100 gigabytes. The issue stems from a misconfigured database cache according to user reports.

Gamers with high write concerns should monitor their SSD health when playing early access titles.

South Africa Withdraws Flawed Ethical AI Policy Containing Fake Content

• The government policy on ethical artificial intelligence included fabricated material.
• Officials discovered the generated content after public review and scrutiny.
• The withdrawal follows advice from communications minister Solly Malatsi.

SOUTH AFRICA, May 02 (TNGB) – South African authorities have withdrawn their national policy on ethical artificial intelligence use after discovering it contained AI generated fake material. The document reportedly included fabricated sections that undermined its credibility and purpose from the start. Communications minister Solly Malatsi confirmed the decision to scrap the policy entirely following expert consultation.

Governments must thoroughly vet AI assisted documents before adopting them as official policy.

Apple Warns Mac Mini and Mac Studio Shortages May Persist for Months

• High demand from local AI boom exceeds current manufacturing output.
• Memory component shortages further constrain production of desktop models.
• Customers may face extended wait times for new Mac purchases.

CUPERTINO, May 02 (TNGB) – Apple has issued warnings that shortages of Mac Mini and Mac Studio computers could continue for several months due to surging demand. The company reportedly attributes the shortfall to a local artificial intelligence boom combined with global memory supply constraints. Production capacity has been outstripped by orders from businesses and developers seeking advanced hardware.

Potential buyers of Apple Mac desktops may encounter significant delays in the coming months.