News
546 articles · 14 categories
Editor's pick
Interviews
Hosting Is the Next Layer AI Will Transform – Vito Peleg, CEO of Atarim
Hetzner Has Now Raised Prices Three Times in 2026. This One Is Different.
Hetzner announced its third price move of 2026 on May 27, effective June 15. New orders only, portfolio standardised into -1/-2/-3 tiers, and a new Limited tier introduces hardware segmentation as a structural market shift. Other European hosts will face pressure to follow.
Cloudflare Called It AI Restructuring. Every Hosting Company Faces the Same Decision.
Cloudflare cut 1,100 employees (20% of headcount) on a $639.8M record revenue day and used a "builders, sellers, measurers" framework that maps directly onto hosting operations. Billing, support triage, and compliance are where AI closed the gap. The advantage goes to who acts first.
WordCamp Europe 2026: A Hosting Industry Guide to the Schedule
WordCamp Europe 2026 opens June 4 in Kraków with Contributor Day plus two conference days. The Inside WordPress 7.0 panel anchors Friday. Hosting-specific sessions cover stress testing, secure hosting, DDoS, and CERN's 800-site migration. Over a dozen hosting companies sponsor.
Articles tagged #security
1–20 of 34
Security
A Database Allegedly From Home.pl Is Being Advertised on a Cybercrime Forum.
A dataset allegedly from Home.pl, Poland's largest hosting provider, is being advertised on a cybercrime forum. We analyze the schema and what it means for 300,000+ customers.
Security
The Exploit Record: How Government Networks Keep Getting Breached
CVE-2026-41940 was exploited as a zero-day for 68 days before a patch existed. CISA was breached via Ivanti vulnerabilities it had just ordered patched. Volt Typhoon had 5-year US infrastructure access. The case-by-case record of how government networks keep getting owned.
Security
CVE-2026-48172: LiteSpeed cPanel Plugin Root Privilege Escalation, CVSS 10.0, Actively Exploited
CVE-2026-48172 in LiteSpeed User-End cPanel Plugin (2.3-2.4.4) lets any authenticated cPanel user run arbitrary scripts as root. CVSS 10.0, actively exploited, on the CISA KEV list. Patch to WHM Plugin 5.3.1.0 / cPanel Plugin 2.4.7 immediately.
Security
FunnelKit Plugin Flaw Actively Exploited to Skim Credit Cards From WooCommerce Checkout Pages
Every customer who checked out on a WooCommerce store running an unpatched FunnelKit plugin may have had their card number, CVV, and billing address stolen. The attack is active across more than 40,000 sites. Patch to version 3.15.0.3, released May 14, 2026, and assess breach notification obligations.
Security
A Ransomware Group’s Backend Was Leaked Because Their Hosting Provider Got Hacked First.
On May 2, hosting provider 4VPS disclosed a breach of its billing systems. Two days later, The Gentlemen ransomware group's backend appeared for sale online. Check Point Research confirmed the dataset included victim lists, ransom negotiations, and internal communications from one of 2026's most active ransomware operations.
Security
Skynethosting Took Its Entire cPanel Fleet Offline on May 1. Two Weeks Later, Some Are Still Down.
Skynethosting took its entire cPanel fleet offline on May 1 in response to CVE-2026-41940, and as of May 14 some customer servers had been down for nearly two weeks, with one reseller publicly reporting a 30 percent client loss during the outage.
Security
Fragnesia: A New Linux Kernel Privilege Escalation That Emerged From Prior Kernel Patches
William Bowling of V12 Security disclosed Fragnesia on May 13, 2026, a Linux kernel privilege escalation that allows an unprivileged local attacker to reach root by corrupting the kernel page cache through the XFRM ESP-in-TCP subsystem.
Security
Nginx Just Patched old Rewrite Module Flaw. RCE Was Possible With a Single HTTP Request.
A flaw sitting in nginx since 2008 was patched on May 13, 2026. CVSS 9.2, unauthenticated, and present in the default rewrite module.
Security
cPanel Patched Five More CVEs. One Fix Is Already Reported Incomplete.
cPanel's May 13 patch covers five new CVEs, but security researcher Shubham Shah reported within hours that the fix for CVE-2026-29205 is incomplete and all cPanel instances remain exploitable until a working patch lands.
Security
Three cPanel Patches and DirtyFrag Fixes in One Day. Here Is Where Things Stand.
On May 8, cPanel closed three new vulnerabilities and Linux distributions shipped DirtyFrag kernel fixes. Two weeks of disclosures left providers with three separate patch tracks. Here is the complete status and the confirmations every shared hosting customer should request.
Security
A Compromised Server Is the Beginning. Here Is What Breach Law Requires Next.
Change Healthcare's $3.1 billion in breach costs is the new normal of what a serious compromise sets in motion: parallel notification clocks across GDPR, NIS2, DORA, and HIPAA; personal liability for CISOs and boards; and a cyber insurance market with conditions that can deny coverage at the worst moment.
Security
cPanel Is Patching Three New CVEs Today. Technical Details Come With the Fix.
Three new cPanel vulnerabilities, CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, are being patched today at 12:00pm EST, with technical details withheld until the fix is live.
Security
DirtyFrag: Any User Account Can Become Root on Most Linux Servers. The Exploit Is Public. There Is No Patch.
DirtyFrag, a Linux kernel local privilege escalation that gives any local user root access on Ubuntu, RHEL, Fedora, CentOS Stream, AlmaLinux, and openSUSE Tumbleweed, went fully public on May 8 after an embargo break, with no CVE assigned and no patches available for any affected distribution.
Security
Apache 2.4.67 Patches 11 CVEs. One Is RCE. One Hits Shared Hosting.
Apache 2.4.67, released May 4, patches 11 CVEs including a CVSS 8.8 HTTP/2 remote code execution flaw and a shared hosting privilege escalation that lets customers read each other's files.
Security
CVE-2026-41940 Live: cPanel Authentication Bypass, Active Exploitation, and What Comes Next
CVE-2026-41940, the cPanel authentication bypass exploited for 64 days before disclosure, is still developing. 44,000 servers likely compromised, a public exploit on GitHub, three active campaigns. This page is updated in real time as new information surfaces.
Security
The cPanel Zero-Day Was Active for 64 Days Before Anyone Knew
CVE-2026-41940, the cPanel authentication bypass from April 28, was being exploited since February 23, operated as a zero-day for 64 days, and was added to CISA's Known Exploited Vulnerabilities list with 1.5 million internet-exposed instances counted by Rapid7.
Security
Copy Fail: Any Local User Can Get Root on Nearly Every Linux System Since 2017
Copy Fail (CVE-2026-31431) is a Linux kernel privilege escalation giving any unprivileged local user root access, affecting virtually all distributions since 2017, with shared hosting and multi-tenant environments at highest risk.
Security
cPanel Had an Authentication Bypass. Exploits Were Already in the Wild.
cPanel disclosed a critical authentication bypass on April 28 affecting nearly all versions of cPanel and WHM, with active exploits confirmed in the wild before the patch was released, forcing hosting.com, Namecheap, KnownHost, HostPapa, and InMotion Hosting to take cPanel access offline globally.
Security
Four Tiers of OpenClaw Hosting. Three Have a Security Problem.
The market for running OpenClaw splits cleanly into providers that have made it accessible and providers that have made it secure, and those are currently different products at different price points.
Security
Flippa Promoted the Plugin Portfolio Sale as a Success Story. It Was a Supply Chain Attack.
Flippa celebrated the six-figure sale of the Essential Plugin portfolio; eight months later the buyer activated a backdoor across 20,000+ WordPress sites using Googlebot cloaking and a C2 routed through an Ethereum smart contract.