cPanel Vulnerability Continues to Fuel Web Server Attacks Worldwide
Days after a critical security flaw was disclosed in cPanel and WHM web hosting software, cyberattackers continue exploiting the vulnerability to compromise thousands of websites globally. Security researchers warn that the exploitation is ongoing despite public awareness of the vulnerability.
TechnologyA critical vulnerability in cPanel and WHM, two of the world's most widely used web hosting management platforms, continues to be actively exploited by hackers days after its public disclosure. The security flaw has enabled attackers to gain unauthorized control over thousands of websites across multiple hosting providers and independent servers.
Security experts monitoring the threat landscape report that despite awareness of the vulnerability, compromised systems continue to emerge at a rapid pace. The attackers are using automated tools to scan for vulnerable instances and deploy malicious code to gain persistent access to affected web servers. This suggests that many website administrators have not yet applied available security patches or implemented protective measures.
The vulnerability represents a significant risk to the web hosting industry, as cPanel and WHM are relied upon by millions of websites to manage their server infrastructure, domains, and email services. A successful exploitation allows hackers to access sensitive data, install malware, redirect traffic, or use compromised servers for further attacks against other targets.
Security researchers recommend that all users of cPanel and WHM immediately apply available security updates and verify their systems for signs of compromise. Website administrators should also review access logs, monitor for unusual activity, and implement additional security measures such as Web Application Firewalls (WAF) to limit exposure to known attack vectors.
Open in app →