✨ Discover this must-read post from TechCrunch 📖
📂 **Category**: Security,cPanel,cyberattack,cybersecurity,hackers,web hosting
✅ **What You’ll Learn**:
Nearly a week after the makers of popular web server management software cPanel and WebHost Manager (WHM) alerted users of a critical flaw in their software, hackers are still targeting thousands of websites using the vulnerable software.
As of Monday, there were more than 550,000 potentially vulnerable servers running cPanel, a number that has remained stable for several days. There are now about 2,000 cPanel instances potentially vulnerable, down from about 44,000 on Thursday. These statistics are published by Shadowserver, a non-profit organization that scans and monitors the Internet for cyberattacks.
Hackers have begun compromising servers running cPanel and WHM, taking advantage of a bug that allowed attackers to take full control of vulnerable servers and hijack them via their control panels, security researchers warned Thursday.
As Bleeping Computer reported, the extent of the damage is evident from Google indexing dozens of websites that at some point displayed a message from a group of hackers who claimed to have encrypted the victim’s files in an apparent ransomware attack. Some of these sites are now loading normally.
The ransom note included a chat ID for victims to contact the hackers, who did not immediately respond to TechCrunch’s request for comment.
The US Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that the vulnerability – named CVE-2026-41940 – was being exploited indiscriminately, and added it to its Catalog of Known Vulnerabilities (KEV). CISA asked government agencies to correct by Sunday. CISA did not immediately respond to a request for comment, asking whether it could confirm that government agencies had patched its servers.
Attacks against web servers running cPanel and WHM have likely been ongoing long before the vulnerability was disclosed. According to KnownHost CEO Daniel Pearson, his company detected attacks dating back to February 23.
TechCrunch event
San Francisco, California
|
October 13-15, 2026
Executives at Webpros, the company that develops cPanel and WHM and says it operates 60 million domains, did not respond to a request for comment.
When you buy through links in our articles, we may earn a small commission. This does not affect our editorial independence.
💬 **What’s your take?**
Share your thoughts in the comments below!
#️⃣ **#Hackers #exploiting #cPanel #bug #control #thousands #websites**
🕒 **Posted on**: 1777921465
🌟 **Want more?** Click here for more info! 🌟
