Important Security Notice: cPanel / WHM Update Applied (CVE-2026-41940)

This notification applies to customers using cPanel-based services, including:

• Shared Hosting
• Reseller Hosting
• Managed cPanel VPS
• Managed cPanel Dedicated Servers

We would like to inform you of a recently disclosed security vulnerability affecting cPanel / WHM servers globally.

🔐 What happened

A critical vulnerability (CVE-2026-41940) was identified in the cPanel/WHM authentication system. Under certain conditions, this issue could allow an unauthenticated user to bypass the login process and gain access to hosting accounts.

🛠️ What we have done

Our team responded immediately and has:

Applied the official cPanel security updates across all systems Verified the integrity of affected services Reviewed logs and activity for any signs of exploitation

✅ Current status

All systems are patched and secure No evidence of unauthorized access has been detected All services remain fully operational

⚠️ Impact to you

No action is required from you at this time Your websites, email, and hosting services continue to operate normally

As an additional precaution, we have temporarily restricted access to cPanel, WHM, and Webmail services for up to 48 hours while we continue to monitor for any potential issues that may not yet have been identified.

🔎 Additional information

This vulnerability affected the login mechanism of the control panel, not individual websites or WordPress installations or email accounts directly.

🔒 Recommended best practices

As a general precaution, we recommend:

Using strong, unique passwords for your hosting accounts Enabling multi-factor authentication (where available) Keeping your website software (e.g. WordPress, plugins) up to date

📞 Support

If you have any questions or would like assistance reviewing your account security, please contact our support team.

We take platform security seriously and will continue to monitor and respond to any emerging threats.

Kind regards,

Support Team