Morning Overview on MSN

A cPanel flaw exploited since February just gave hackers root access to 1.5 million websites

If your website runs on shared hosting, there is a reasonable chance it sits on a server managed by cPanel, the control panel software that powers a significant share of the world’s web hosting ...
Morning Overview on MSN

A critical flaw in cPanel has been a wide-open backdoor since February — 44,000 servers are already encrypted with 'Sorry' ransomware

A single missing authentication check in cPanel, the control panel that underpins millions of shared hosting accounts ...
The Hacker News

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

CVE-2026-41940 exploitation by 2,000 IPs enabled Filemanager backdoor attacks, causing credential theft and persistent access ...

Hackers are still exploiting the cPanel bug to gain control of thousands of websites

Days after the disclosure of a critical vulnerability in popular web hosting software cPanel and WHM, hackers keep targeting and hacking websites.
TechRadar

What is cPanel?

In the past couple of decades, building and operating your own website has become an increasingly accessible process. A big part of that is due to the role of web hosting providers simplifying the ...
Searchenginejournal.com

cPanel Plugin Contains Log4j Vulnerability

The popular cPanel web hosting server control panel software recently issued a patch to fix a critical flaw in the log4j Java library discovered in part of the software used for email. The ...
Security Boulevard

Imperva Customers Protected Against CVE-2026-41940 in cPanel & WHM

CVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel & WHM, including DNSOnly, in versions after 11.40. The flaw, discovered by WatchTowr Labs, exists in the login flow ...