Attackers exploit cPanel authentication bypass vulnerability before emergency patch release
Updated
Updated · cyberkendra.com · Apr 29
Attackers exploit cPanel authentication bypass vulnerability before emergency patch release
10 articles · Updated · cyberkendra.com · Apr 29
KnownHost and Namecheap confirmed successful exploits occurred before cPanel released a fix on April 28, affecting over 70 million domains.
The flaw, tracked as CPANEL-52908, allowed attackers to access WHM without a password, risking mass compromise of websites and server data across major hosting providers.
The vulnerability was reported to cPanel two weeks earlier, but initial responses downplayed the risk. No CVE has been assigned, so manual checks and urgent patching are advised for all cPanel users.
The cPanel breach fuels a black market. How much is root access to your server now worth?
Which cybercrime groups are now selling root access gained from the massive cPanel exploit?
Beyond logs, what hidden traces can prove a server was compromised by the cPanel root access flaw?
My host says I'm safe after the cPanel hack. How can I verify my website's data wasn't stolen?
cPanel dismissed the first warning. What does this reveal about the security culture at major software vendors?
How did a simple text character flaw give hackers total control over 70 million domains?