SMWS is aware of a recently published critical security vulnerability affecting cPanel & WHM login authentication.
This issue relates to the hosting control panel software used by many hosting providers, not to individual website code. We have already contacted our upstream provider to confirm that the servers supporting SMWS client accounts are being updated to the patched cPanel builds or have already been secured.
At this time, this is an informational notice only. We are monitoring the situation and will take any needed action to help protect hosted accounts.
For most clients, there is nothing you need to do right now.
As a precaution, we always recommend:
- Using strong, unique passwords
- Enabling two-factor authentication where available
- Avoiding password reuse across services
- Reporting anything unusual with your website, email, or hosting account
SMWS will continue to monitor the situation and will update this notice if any client action becomes necessary.
Thank you,
SMWS
Tuesday, April 28, 2026
