All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Just got this email from cPanel
Salutations,
You are receiving this email because you have opened a ticket with our support staff in the last 6 months. cPanel, Inc. has discovered that one of the servers we utilize in the technical support department has been compromised. While we do not know if your machine is affected, you should change your root level password if you are not already using ssh keys. If you are using an unprivileged account with "sudo" or "su" for root logins, we recommend you change the account password. Even if you are using ssh keys we still recommend rotating keys on a regular basis.
As we do not know the exact nature of this compromise we are asking for customers to take immediate action on their own servers. cPanel's security team is continuing to investigate the nature of this security issue.
--cPanel Security Team
Comments
Well shit
+1 for cPanel, good on them for notifying you
http://www.lowendtalk.com/discussion/8146/sshd-rootkit-exploit - this.
Exactly what I was thinking, concerto.
It's not like password (or keys) change will help in case it's about this last known sshd exploit..
http://www.lowendtalk.com/discussion/8146/sshd-rootkit-exploit/p1
http://isc.sans.edu/diary/SSHD+rootkit+in+the+wild/15229
Some people at WHT speculated yesterday already that (also) cPanel support could be infected.
Just got this Email also, glad I'm not running cPanel anymore!
What difference does it make? I use cPanel but never contacted their support (to ask them to log into my VPS with password provided) so it makes no difference. From what we see at WHT last 2 - 3 days http://www.webhostingtalk.com/showthread.php?t=1235797 plenty servers are infected with this new rootkit - also those without cPanel.
@Spirit Damn dude take a chill pill. Wasn't supposed to be taken literally.
@Jeffrey So you're not actually glad? Dang
Hate it but really thankful that they notify prior to figuring out every little detail. That's the kind of reason that I trust these guys.
That might have something to do with the hack? Did everybody who got hacked ask for cPanel support?
Yet cPanel owns WHMCS
@shovenose
It affects people even that don't have cPanel. Some with no panel some with plesk etc