A ransomware campaign that locks web servers and drops a note reading simply “Sorry” has torn through the shared hosting ...

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

Over 40,000 servers have likely been compromised in ongoing attacks targeted at a recently patched cPanel zero-day.

Attackers can attack cPanel and WebHost Manager with malicious code, among other things. Security patches are available.

A critical-severity authentication bypass vulnerability in cPanel & WHM has been exploited as a zero-day since February 2026.

Days after the disclosure of a critical vulnerability in popular web hosting software cPanel and WHM, hackers keep targeting ...

Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...

Active exploits confirmed: Both SharePoint and cPanel vulnerabilities are being leveraged in real-world attacks, with government and private systems at risk. Patch gaps persist: Over 1,300 SharePoint ...

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in ...

The authentication-bypass flaw has multiple proof-of-concept exploits, and one researcher claims there's been zero-day ...

A clever phishing scam is targeting cPanel users with a fake security advisory alerting them of critical vulnerabilities in their web hosting management panel. cPanel is administrative software ...

cPanel users are being targeted in a new phishing scam that uses a fake security advisory to trick them into giving up their credentials. cPanel provides shared web hosting users with a Linux-based ...