This pack covers five intelligence items spanning identity-layer social engineering, mobile fraud infrastructure, a critical hosting control panel authentication bypass, an actively exploited Linux kernel privilege escalation enabling container escape, and a batch of high-severity Wireshark dissector vulnerabilities. The dominant attack patterns are authentication bypass and credential abuse, appearing across three of five items, combined with exploitation of public-facing and analyst-facing applications. Immediate attention is required for CVE-2026-31431 (actively exploited Linux kernel LPE with confirmed container escape) and CVE-2026-41940 (critical cPanel authentication bypass at the 96th EPSS percentile); both warrant emergency patching ahead of all other remediation work.