Dear Valued Client,
We hope you are doing well.
Over the past several days, the global hosting industry has experienced multiple high-risk cybersecurity incidents affecting shared hosting, VPS, and dedicated server infrastructures worldwide. These incidents have involved critical vulnerabilities, active exploitation attempts, privilege escalation attacks, authentication bypass issues, and large-scale automated bot activities targeting hosting environments.
The affected technologies and infrastructure components include:
• cPanel & WHM authentication bypass vulnerabilities (including CVE-2026-41940)
• CloudLinux and CageFS-related security mitigation advisories
• Linux Kernel privilege escalation vulnerabilities and exploit chains
• Apache HTTP Server and HTTP/2-related security issues
• OpenSSL and web stack dependency vulnerabilities
• Brute-force and credential stuffing attacks targeting hosting panels
• Malware injection and mass website defacement campaigns
• WordPress plugin/theme exploitation attempts
• Suspicious botnet scanning activities targeting shared hosting environments
• Unauthorized webshell upload attempts and privilege escalation activities
• Abuse targeting outdated CMS installations, scripts, APIs, and third-party integrations
Due to the global nature of these ongoing threats, many international hosting providers temporarily restricted management panel access, implemented emergency firewall rules, hardened server configurations, and deployed urgent security patches and monitoring systems.
We would like to assure you that our infrastructure and security teams have already completed the necessary emergency mitigation procedures across all active servers, including:
Security patch deployment
Kernel and infrastructure hardening
Real-time monitoring and threat detection
Firewall and brute-force protection enhancement
Malware scanning and account isolation procedures
Service integrity verification and stability checks
Additional preventive security measures for hosting environments
At this moment, our servers and core hosting services are operating normally and remain under continuous monitoring.
However, as an additional safety precaution, we strongly recommend that all clients review their hosting accounts, websites, CMS installations, plugins, themes, custom scripts, APIs, email accounts, and third-party integrations within the next 72 hours.
Please verify the following carefully:
Website accessibility and functionality
cPanel and admin login access
File integrity and unknown file modifications
CMS/plugin/theme updates
Email sending and receiving functionality
Unknown administrator accounts or suspicious activities
API integrations and external service connections
Malware warnings or unexpected redirects
Unauthorized cron jobs or suspicious scripts
If you notice any issue, abnormal behavior, malware warning, missing data, website problem, login issue, or suspicious activity, please contact our support team immediately so we can assist you promptly.
Additionally, JetBackup backups from the past 15 days are currently available through:
cPanel → JetBackup
For additional safety, we strongly recommend that clients:
Download their latest backups within the next 72 hours
OR
Restore any required backup versions if necessary
Our support team remains fully available to assist with:
Backup restoration
Malware investigation
Website verification
Security review
Account recovery assistance
We sincerely apologize for any temporary inconvenience caused during this global security situation. All preventive and emergency measures were taken solely to ensure the highest possible protection of customer data, hosting accounts, and server infrastructure.
Thank you for your patience, cooperation, and continued trust in our services.
Best Regards,
Security & Infrastructure Team
cP Hosting World
