{"id":14540,"date":"2022-07-01T00:00:08","date_gmt":"2022-06-30T16:00:08","guid":{"rendered":"https:\/\/www.cldy.com\/sg\/?p=14540"},"modified":"2023-02-28T20:46:43","modified_gmt":"2023-02-28T12:46:43","slug":"make-cpanel-account-hacker-proof","status":"publish","type":"post","link":"https:\/\/www.cldy.com\/sg\/blog\/security\/make-cpanel-account-hacker-proof\/","title":{"rendered":"How to Make Your cPanel Account Hacker-Proof"},"content":{"rendered":"<p><span style=\"font-weight: 400\">cPanel is among the most widely used commercial control panels in the market and its popularity is no surprise. cPanel lets you easily manage web files, track data, and maximise your website\u2019s SEO.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">While only available for Linux OS, cPanel (along with WHM or Web Host Manager) continues to be the go-to control panel for hosting management. It suits everyone from beginners to experienced system admins.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">But like every tool in the market, cPanel is not foolproof and can be vulnerable to cyberattacks.<\/span><\/p>\n<p style=\"text-align: center\"><img decoding=\"async\" class=\"aligncenter size-large wp-image-14541\" src=\"https:\/\/www.cldy.com\/sg\/wp-content\/uploads\/sites\/7\/2022\/06\/person-using-macbook-air-1024x684.jpg\" alt=\"person-using-macbook-air\" width=\"800\" height=\"534\" srcset=\"https:\/\/www.cldy.com\/sg\/wp-content\/uploads\/sites\/7\/2022\/06\/person-using-macbook-air-1024x684.jpg 1024w, https:\/\/www.cldy.com\/sg\/wp-content\/uploads\/sites\/7\/2022\/06\/person-using-macbook-air-300x200.jpg 300w, https:\/\/www.cldy.com\/sg\/wp-content\/uploads\/sites\/7\/2022\/06\/person-using-macbook-air-768x513.jpg 768w, https:\/\/www.cldy.com\/sg\/wp-content\/uploads\/sites\/7\/2022\/06\/person-using-macbook-air-1536x1026.jpg 1536w, https:\/\/www.cldy.com\/sg\/wp-content\/uploads\/sites\/7\/2022\/06\/person-using-macbook-air.jpg 1920w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><em><span style=\"font-weight: 400\">Photo by <\/span><a href=\"https:\/\/www.pexels.com\/photo\/person-using-macbook-air-6330644\/\" rel=\"nofollow noopener\" target=\"_blank\">Mati Mango<\/a><span style=\"font-weight: 400\"> via Pexels<\/span><\/em><\/p>\n<h4><strong>How Do Hackers Overrun Your cPanel Account?<\/strong><\/h4>\n<p><span style=\"font-weight: 400\">The most common way hackers perforate a cPanel account is through a hacked website. By taking advantage of a website&#8217;s vulnerability, hackers can easily entrench themselves in a system.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">One common hack method is a<\/span> <a style=\"color: #f4662d\" href=\"https:\/\/www.cldy.com\/support\/help\/what-is-a-brute-force-attack\/\">brute-force attack<\/a><b>.<\/b><span style=\"font-weight: 400\"> The process involves a hacker using trial and error methods to gain access to an organisation\u2019s systems, networks, and individual accounts. They often use apps to generate different login combinations before successfully hacking into the system.\u00a0<\/span><span style=\"font-weight: 400\"><br \/>\n<\/span><\/p>\n<p><span style=\"font-weight: 400\">Another way hackers gain<b> unauthorised access is through API tokens<\/b>. Hackers may supply you with illegal tokens with privileges. They then exploit this vulnerability to access your cPanel account.<\/span><\/p>\n<p><span style=\"font-weight: 400\">Remember that the cybersecurity industry is as lucrative as ever, so hackers will stop at nothing to succeed. If they\u2019re unable to access your website, they\u2019ll attack your server or hosting space, where all your confidential data is stored.<\/span><\/p>\n<p><span style=\"font-weight: 400\">Ensure that your organisation has taken measures to protect your cPanel accounts. Below are some beginner-friendly steps your business can start implementing today.<\/span><\/p>\n<h4><strong>8 Ways To Protect Your cPanel Account From Hackers<\/strong><\/h4>\n<p>1. <b>Enforce strong, unique passwords<\/b><\/p>\n<p><span style=\"font-weight: 400\">One of the first steps to protect your cPanel account (or any system <\/span><i><span style=\"font-weight: 400\">really<\/span><\/i><span style=\"font-weight: 400\">) is to enforce a strong password policy.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">Here are some tips to remember when you\u2019re creating a password for cPanel account:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400\"><b>Use a unique password<\/b><span style=\"font-weight: 400\">\u00a0\u2014 bonus points if you\u2019ve never used it for any of your online accounts!<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Avoid using passwords that include your <\/span><i><span style=\"font-weight: 400\">username<\/span><\/i><span style=\"font-weight: 400\">, <\/span><i><span style=\"font-weight: 400\">birthday<\/span><\/i><span style=\"font-weight: 400\">, or any piece of public information.<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Use a combination of <\/span><i><span style=\"font-weight: 400\">uppercase<\/span><\/i><span style=\"font-weight: 400\"> and <\/span><i><span style=\"font-weight: 400\">lowercase<\/span><\/i><span style=\"font-weight: 400\"> characters to decrease the chances of a brute force attack.<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Use a password management tool so you never get locked out of your account.<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400\">You can define the default password strength for new users by configuring the <\/span><i><span style=\"font-weight: 400\">Default Required Password Strength <\/span><\/i><span style=\"font-weight: 400\">slider on cPanel. You can also set a number between zero and 100, with 100 representing the strongest password setting.<\/span><\/p>\n<p><span style=\"font-weight: 400\">To configure password requirements for existing accounts, go to WHM\u2019s <\/span><i><span style=\"font-weight: 400\">Configure Security Policies <\/span><\/i><span style=\"font-weight: 400\">interface to enable the <\/span><i><span style=\"font-weight: 400\">Password Strength <\/span><\/i><span style=\"font-weight: 400\">settings. <\/span><\/p>\n<p>2. <b>Update your cPanel to the latest version<\/b><\/p>\n<p><span style=\"font-weight: 400\">cPanel constantly releases new security patches to resolve new security vulnerabilities.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">To update manually, head to <\/span><b>WHM &gt; cPanel &gt; Upgrade to the Latest Version.<\/b><span style=\"font-weight: 400\"> You can also request assistance from your developer or system administrator to upgrade your cPanel version via the command line.<\/span><\/p>\n<p><span style=\"font-weight: 400\">To enable daily updates, go to <\/span><b>WHM &gt; Server Configuration &gt; Update Preferences<\/b><span style=\"font-weight: 400\">.<\/span><\/p>\n<p><span style=\"font-weight: 400\">Note that not every new update is compatible with your system. So it\u2019s always a good idea to launch the update on a staging environment prior to releasing it live. If you don\u2019t have the resources to do this step yourself, don\u2019t hesitate to employ professional help to avoid data loss.<\/span><\/p>\n<p>3. <b>Enable firewall in WHM (Web Host Manager)<\/b><\/p>\n<p><span style=\"font-weight: 400\">The minute you set up your cPanel account and WHM accounts, ensure that you have a firewall configured.<\/span><\/p>\n<p><span style=\"font-weight: 400\">A firewall is a cybersecurity tool designed to prevent unauthorised access. It blocks malicious scripts, third-party services, and Distributed Denial-of-Service (DDoS) tools from passing through your server. A firewall also allows you to filter and scan external network connections.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">While no two firewalls are the same, some systems even allow you to monitor all login attempts.\u00a0<\/span><\/p>\n<p>4. <b>Secure Your SSH Server<\/b><\/p>\n<p><span style=\"font-weight: 400\">SSH stands for Secure Shell. It can be used to describe the protocol itself or the tools used to establish encrypted communication between two computers.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">By default, port 22 is used for all incoming connections. Because it\u2019s a well-known port, it attracts hackers and malicious bots. <\/span><span style=\"font-weight: 400\"><br \/>\n<\/span><span style=\"font-weight: 400\"><br \/>\n<\/span><span style=\"font-weight: 400\">To combat this, you can start by deciding on an alternative port to use other than port 22. You can follow the steps to <a style=\"color: #f4662d\" href=\"https:\/\/www.cldy.com\/support\/help\/how-to-use-ssh-access\/\">configure SSH Access<\/a> via your cPanel account.<\/span><span style=\"font-weight: 400\"><br \/>\n<\/span><span style=\"font-weight: 400\"><br \/>\n<\/span><span style=\"font-weight: 400\">While changing the default port distracts bots from scanning the web for vulnerabilities, it doesn\u2019t fully protect you from an attack. Increase security by using SSH keys instead of passwords, disabling direct root access, and prohibiting the use of blank passwords.<\/span><\/p>\n<p>5. <b>Boost security on Apache and PHP on Linux<\/b><\/p>\n<p><span style=\"font-weight: 400\">Apache is one of the most widely-used web servers for Linux, <\/span><a style=\"color: #f4662d\" href=\"https:\/\/trends.builtwith.com\/Web-Server\/Apache#:~:text=Apache%20Customers,52%2C468%2C484%20live%20websites%20using%20Apache.\" rel=\"nofollow noopener\" target=\"_blank\">hosting more than 50 million websites<\/a><span style=\"font-weight: 400\"> since its launch.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">While Apache is a secure web server on its own, you can take measures to harden and improve its security.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">Some ideas include but are not limited to:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400\"><b>Disabling directory browsing. <\/b><span style=\"font-weight: 400\">By default, Apache displays the contents of a directory. It\u2019s recommended that you switch this off to prevent attackers from obtaining the source code.<br \/>\n<\/span><span style=\"font-weight: 400\"><br \/>\n<\/span><\/li>\n<li style=\"font-weight: 400\"><b>Update Apache regularly.<\/b><span style=\"font-weight: 400\"><span style=\"font-weight: 400\"> Apache\u2019s developers have consistently launched new versions to tackle security issues. Check the version of Apache you\u2019re running on by using the <em>httpd -v<\/em> command.<\/span><\/span><\/li>\n<li style=\"font-weight: 400\"><b>Disable TRACE HTTP request. <\/b><span style=\"font-weight: 400\"><span style=\"font-weight: 400\">Enabling HTTPS TRACE requests allows hackers to launch a Cross-Site Traffic attack.<\/span><\/span><\/li>\n<li style=\"font-weight: 400\"><b>Remove redundant DSO modules.<\/b><span style=\"font-weight: 400\"><span style=\"font-weight: 400\"> Apache activates modules by default. Removing the ones you don\u2019t need not only improves your security but also improves performance and memory efficiency.<\/span><\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\"><b>Allow access only to specific networks or IPs. <\/b>You can modify this via your site Directory in <em>httpd.conf<\/em>.<br \/>\n<\/span><\/li>\n<\/ul>\n<p>6. <b>Use SFTP (<\/b><b>Secure File Transfer Protocol<\/b><b>)<\/b><\/p>\n<p><span style=\"font-weight: 400\">File Transfer Protocol (FTP) is a set of protocols used to move files between computers. One of its benefits is that, unlike browsers, there\u2019s no file size limit. You can also schedule transfers using FTP clients like Filezilla.<\/span><\/p>\n<p><span style=\"font-weight: 400\">The only downside to FTP is that it doesn\u2019t encrypt the data. This makes it easy for hackers to capture the data packets and use them for their own gain.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">SFTP, or Secure File Transfer Protocol, is exactly as its name implies. SFTP establishes a secure connection by applying an SSH2 Message Authentication Code (Code) to data payload packets encrypted in the data stream.<\/span><\/p>\n<p><span style=\"font-weight: 400\">To configure the cPanel account to connect with an SFTP service, go to <\/span><b>FTP Server Configuration &gt; TLS Encryption Support<\/b><span style=\"font-weight: 400\">. Click on the drop-down menu and select<\/span><b> Required<\/b><span style=\"font-weight: 400\">. Don\u2019t forget to click <\/span><b>Save.<\/b><\/p>\n<p>7. <b>Secure your website as well<\/b><\/p>\n<p><span style=\"font-weight: 400\">A professional website requires time and money. But without security measures in place, you could be putting your site \u2014 and your business \u2014 at risk.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">Here are some website security tips you can easily start implementing today:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400\"><b>Equip your website with SSL.<\/b><span style=\"font-weight: 400\"><span style=\"font-weight: 400\"> Installing SSL prevents hackers from stealing confidential data sent to and from your website.<\/span><\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\"><span style=\"font-weight: 400\"><b>Partner with a secure website host. <\/b>A well-known hosting provider doesn\u2019t guarantee your website\u2019s security. In fact, dozens of big-name providers find themselves at the receiving end of a hacking attack. <\/span><\/span><span style=\"font-weight: 400\"><span style=\"font-weight: 400\">When choosing a <a style=\"color: #f4662d\" href=\"https:\/\/www.cldy.com\/sg\/web-hosting\/\">web hosting provider<\/a>, \u00a0ensure that they have security as a top priority. On top of server security tools, take a look if they offer 24\/7 performance monitoring, and <a style=\"color: #f4662d\" href=\"https:\/\/www.cldy.com\/sg\/cldy-service-guarantees\/\">service guarantees<\/a> to ensure\u00a0your data stays protected all year round.<\/span><\/span><\/li>\n<li><b>Secure file uploads. <\/b><span style=\"font-weight: 400\">Allowing user-generated content is a great way to promote user engagement on your site \u2014 <\/span><i><span style=\"font-weight: 400\">until<\/span><\/i><span style=\"font-weight: 400\"> it opens a pandora\u2019s box of malware.<\/span><b><br \/>\n<\/b><span style=\"font-weight: 400\"><br \/>\nProtect your website by encrypting your website data with SSL, installing anti-virus software, and storing uploads outside the root directory.<br \/>\n<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400\">You can learn more about these security measures \u2014 and a few others \u2014 here.<\/span><\/p>\n<p>8. <b>Backup your server files<\/b><\/p>\n<p><span style=\"font-weight: 400\">It\u2019s always a good idea to have a backup ready.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">Content Management Systems like WordPress lets you manage scheduled backups with plugins. There are tons of free and premium options available. Some favourites among the WordPress community include UpdraftPlus and JetPack.<\/span><\/p>\n<p><span style=\"font-weight: 400\">Otherwise, you can go the manual route and backup your website on cPanel. Simply head to <\/span><b>Files &gt; Backup<\/b><span style=\"font-weight: 400\"> to save a copy of your themes, plugins, configuration files, and your entire database. <\/span><\/p>\n<h4><strong>Bulletproof Your cPanel Account Today<\/strong><\/h4>\n<p><span style=\"font-weight: 400\">Servers contain piles of confidential business information. If compromised, you not only lose private data \u2014 you lose public trust and credibility as well.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">Take a moment to protect your cPanel account from hackers today. Apart from the security options available on cPanel, you can add an extra layer of protection by partnering with secure web hosting.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\">You can always drop us a message here at CLDY, <a style=\"color: #f4662d\" href=\"https:\/\/www.cldy.com\/sg\/\">Singapore&#8217;s leading hosting service provider<\/a><\/span><span style=\"font-weight: 400\">, leveraging the best of what cloud technology has to offer and scaling your business today using our secure server infrastructure!<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>cPanel is among the most widely used commercial control panels in the market and its popularity is no surprise. cPanel lets you easily manage web files, track data, and maximise your website\u2019s SEO.\u00a0 While only available for Linux OS, cPanel (along with WHM or Web Host Manager) continues to be the go-to control panel for [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":14653,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[71],"tags":[],"class_list":["post-14540","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security"],"_links":{"self":[{"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/posts\/14540","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/comments?post=14540"}],"version-history":[{"count":9,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/posts\/14540\/revisions"}],"predecessor-version":[{"id":17797,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/posts\/14540\/revisions\/17797"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/media\/14653"}],"wp:attachment":[{"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/media?parent=14540"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/categories?post=14540"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cldy.com\/sg\/wp-json\/wp\/v2\/tags?post=14540"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}