Morning Overview on MSN

A critical flaw in cPanel has been a wide-open backdoor since February — 44,000 servers are already encrypted with 'Sorry' ransomware

A single missing authentication check in cPanel, the control panel that underpins millions of shared hosting accounts ...
Morning Overview on MSN

CPanel’s state-backed attackers are now targeting government servers in Southeast Asia and military networks in the Philippines

Somewhere on a rack in a government data center in Southeast Asia, a cPanel login screen is almost certainly still waiting ...

Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ...
The Hacker News

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

CVE-2026-41940 exploitation by 2,000 IPs enabled Filemanager backdoor attacks, causing credential theft and persistent access ...
The Hacker News

Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks

Panel CVE-2026-41940 exploited within 24 hours, enabling 44,000 IP attacks and data breaches across global networks.

cPanel drops patches for exploited authentication bypass zero-day

Web hosting software vendor cPanel has issued patches for a critical vulnerability in its software that is under exploitation ...
Searchenginejournal.com

cPanel Plugin Contains Log4j Vulnerability

The popular cPanel web hosting server control panel software recently issued a patch to fix a critical flaw in the log4j Java library discovered in part of the software used for email. The ...
TechRadar

What is cPanel?

In the past couple of decades, building and operating your own website has become an increasingly accessible process. A big part of that is due to the role of web hosting providers simplifying the ...