Over 40,000 servers have likely been compromised in ongoing attacks targeted at a recently patched cPanel zero-day.

Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug for months.

A clever phishing scam is targeting cPanel users with a fake security advisory alerting them of critical vulnerabilities in their web hosting management panel. cPanel is administrative software ...

Days after the disclosure of a critical vulnerability in popular web hosting software cPanel and WHM, hackers keep targeting and hacking websites.

A single missing authentication check in cPanel, the control panel that underpins millions of shared hosting accounts ...

Tens of thousands of web servers running cPanel, one of the most widely used hosting control panels in the world, have been ...

cPanel users are being targeted in a new phishing scam that uses a fake security advisory to trick them into giving up their credentials. cPanel provides shared web hosting users with a Linux-based ...

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. It is ...

Attackers can attack cPanel and WebHost Manager with malicious code, among other things. Security patches are available.

The new versions of the cPanel and WHM web hosting management software close at least one security vulnerability that is considered high-risk. The vulnerabilities are in third-party software that ...