Last updated 1 month ago
cPanel, a widely used hosting control panel software, is under active exploitation due to a critical vulnerability. CISA has added the bug to its known-exploited list, confirming that attackers are already targeting one of the internet's most widely used hosting stacks. At least one victim has reported receiving a ransomware demand, indicating that exploitation was underway before patches were released.
The attack chain involves exploitation of a critical vulnerability in cPanel, which allows attackers to gain unauthorized access to affected systems. The specific CVE identifier is not mentioned in the article. The initial access vector is vulnerability exploitation, and the attackers have deployed ransomware on at least one victim's system. The data compromised includes a ransomware demand, but no specific data types are listed.
No post-incident developments are mentioned in the article.
Exploitation of a critical vulnerability in cPanel before patches were available
Sign in to join the discussion.
Company
Industry
Location
Disclosed
Records Affected
Attack Vector