A ransomware campaign that locks web servers and drops a note reading simply “Sorry” has torn through the shared hosting ...

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ...

A high-severity vulnerability in cPanel, the control panel software that underpins web hosting for millions of servers ...

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in ...

Days after the disclosure of a critical vulnerability in popular web hosting software cPanel and WHM, hackers keep targeting ...

Panel patched three vulnerabilities, including two 8.8 CVSS flaws, reducing risks of code execution and privilege escalation.

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

Over 40,000 servers have likely been compromised in ongoing attacks targeted at a recently patched cPanel zero-day.

The authentication-bypass flaw has multiple proof-of-concept exploits, and one researcher claims there's been zero-day ...

A critical-severity authentication bypass vulnerability in cPanel & WHM has been exploited as a zero-day since February 2026.

Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...

CVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel & WHM, including DNSOnly, in versions after ...