A critical vulnerability in cPanel & WHM – software used by a very significant proportion of web hosting servers worldwide – triggered an industry-wide response last week.
The vulnerability (CVE-2026-41940) was publicly disclosed on 28th April and was already being actively exploited in the wild. Emergency patches were released later the same day, leading to a scramble by hosting providers to secure infrastructure before widespread automated attacks began.
Are Globe2 sites vulnerable?
We place significant emphasis on security and rapid patch management. Our infrastructure was patched shortly after vendor fixes became available, before widespread exploitation attempts reached our systems.
We created the webCenturion security site seal specifically to demonstrate our commitment to security best practice. One component includes the use of genuine cPanel licensing and proactive vulnerability patching.
Since patching, we have identified multiple exploit attempts against our infrastructure.
Several hosting providers temporarily restricted access to cPanel/WHM services while emergency updates were deployed, and some customers elsewhere have experienced service disruption as a result.
Lessons learned
No platform is immune when a critical exploit becomes public before patches are universally applied. The key is to minimise the exposure window through rapid patching, active monitoring, and backups separated from the hosting infrastructure to reduce recovery time if the worst happens.
Separately to this cPanel issue, we continue to offer free WordPress vulnerability scans. A large proportion of scans continue to identify known vulnerabilities that website owners were unaware of.
Once you know, you can do something about it.
Contact us if you’d like a scan carried out.
