Some users of the shared web hosting administrative software cPanel began reporting a phishing campaign on August 5th. The email tried to lure victims with the subject “cPanel Urgent Update Request” and listed three “updated” versions of the software that would address all the vulnerabilities. Although phishing emails are typically poorly worded with plenty of grammatical and spelling errors, this one should be a reminder that not all phishing attempts will be so obvious. Ultimately, the goal of the attack was to convince victims to click on a link, directing them to a fake site which prompted the victim to enter their cPanel credentials.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in