FeedVulnerabilityMassive cPanel campaign compromised 44,000 servers worldwide...
VulnerabilityCyber Insider
9.8CRITICAL

Massive cPanel campaign compromised 44,000 servers worldwide

📅 2 May 2026 at 19:12 UTC📰 Cyber InsiderView original source ↗
Massive cPanel campaign compromised 44,000 servers worldwide

A surge in attacks exploiting the critical cPanel & WHM vulnerability CVE-2026-41940 has resulted in at least 44,000 compromised systems now actively scanning and launching attacks. The warning was issued by Shadowserver, which reported a sharp spike in malicious traffic targeting its global honeypot sensors. The nonprofit cybersecurity organization reported that the 44,000 figure reflects … The post Massive cPanel campaign compromised 44,000 servers worldwide appeared first on CyberInsider.

🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview

A massive campaign exploiting the CVE-2026-41940 cPanel & WHM vulnerability has compromised over 44,000 servers worldwide, with attackers now actively scanning and launching attacks against vulnerable systems.

⚙️Technical Details
💥Impact Assessment
Severity: Critical
🛡️Recommended Actions
1Apply the latest security updates released by cPanel
2Verify version compliance across all servers and audit logs for suspicious session activity or unauthorized access
3Restrict access to cPanel/WHM ports (2083 and 2087) and enforce IP allowlists
📦Affected Products
Cpanel CpanelCpanel WhmCpanel Wp SquaredcPanel
🔐NVD Verified DataVERIFIED
CVE-2026-41940CVSS 9.8CRITICAL
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weaknesses
CWE-306
Affected Products (CPE)
Cpanel CpanelCpanel WhmCpanel Wp Squared

Read the full article

This is a curated summary. The complete article is available at Cyber Insider.

Read on Cyber Insider
← Back to feed