We are aware of an issue with a recent Apache update that causes proxied sites to return a "421 Misdirected Request" error. Please see the following article for more information and updates:
Websites show 421 Misdirected Request error while using EA Nginx

How do site compromises happen?

cPanelPeter

June 26, 2025 03:32
Updated

Question

Answer

The most common way websites get hacked or defaced is through insecure plugins, themes, or components in various CMS software (such as WordPress, Joomla, Drupal, etc.). While the actual CMS is very secure, and any security issues are usually patched very quickly, its plugins and themes are usually not updated or sometimes even checked to see if they have one or more security implications.

The second most common method is malicious software installed on the customer's computer that steals passwords, such as a keylogger or a Trojan. When that user logs onto their cPanel page or uploads changes via FTP, the password is sent to hackers, who then start using it.

Additional resources

How to address a WordPress compromise

Hardening WordPress

Comments

0 comments

Article is closed for comments.

Question

Answer

Additional resources

Related articles