Skip to main content

Tag: web hosting

5 articles

Linux web hosting control panel setup in a server room with out-of-focus laptop screen nearby.

cPanel flaw fuels mass Sorry ransomware attacks

A critical flaw in cPanel, tracked as CVE-2026-41940, has been exploited in a massive ransomware campaign, compromising at least 44,000 IP addresses. This alarming attack has already been used in the wild as a zero-day, with threat actors accessing control panels and wreaking havoc on web hosting systems.

Analyst 207
Rows of computer servers and networking equipment in a shared hosting server room or data center.

cPanel Bug Exploited in Wild as Zero-Day Before Patch Release

A cPanel bug, tracked as CVE-2026-41940, was exploited in the wild as a zero-day vulnerability before a patch was released, with attackers making execution attempts as early as February 23, 2026. The flaw forced vendors and hosting providers into emergency mitigation, with cPanel finally releasing a fix on April 28, 2026.

Analyst 207
Rows of computer servers and networking equipment in a web hosting facility, with a single server terminal screen blank and…

cPanel Rushes Emergency Update to Fix Auth Bypass Bug

A critical security vulnerability in cPanel software has been discovered, allowing unauthorized access to the control panel, prompting immediate action from providers like Namecheap to protect customers. cPanel has since rushed out an emergency update to fix the authentication bypass bug affecting all currently supported versions.

Analyst 207
System administrator standing behind a computer terminal with a blurred login screen in a server room.

cPanel Discloses Authentication Flaw, Urges Immediate Server Updates

cPanel has uncovered a critical authentication flaw that could let hackers gain unauthorized access to your control panel, and is urging immediate server updates to protect against this threat. Check if your version is vulnerable and update to a patched build right away.

Analyst 207
Non-profit office workspace with computer workstation hinting at digital vulnerability.

GoDaddy Domain Transfer Exposes Non-Profit to Security Risks

A shocking security breach occurred when a 27-year-old domain was transferred from a GoDaddy account to another customer without any authentication checks, putting a non-profit at risk. The alarming transfer was completed in just four minutes, raising serious concerns about GoDaddy's domain transfer process.

Analyst 207