Check your host's cPanel is up to date say Hacker News
Strange that cPanel Security News has not yet reported this BUT Hacker News report that cPanel has patched a security vulnerability that could have allowed remote attackers with access to valid credentials to bypass two-factor authentication (2FA) protection on an account.
"The issue, tracked as "SEC-575" and discovered by researchers from Digital Defense, has been remedied by the company in versions:
- 22.214.171.124, and
of the software."
Source: The Hacker News - see link below.
Update 29 Nov 2020
cPanel are now reporting this in cPanel Security News.
Check your host's cPanel is up to date
Do not assume your hosting provider is keeping up to speed with developer roll-outs of security releases.
Visit the above link for more details.
Subscribe to The Hacker News newsletter when you visit the above link.
About The Hacker News
"The Hacker News (THN) is a leading, trusted, widely-acknowledged dedicated cybersecurity news platform, attracting over 8 million monthly readers including IT professionals, researchers, hackers, technologists, and enthusiasts."
Protect your device, browser & web connection
When thinking about website security, it is easy to overlook the:
- device (operating system) used to connect to your website,
- the way you connect (your web browser) to the internet, and
- how you connect (in the clear or via encryption).