INCIDENT: SSH Access Temporarily Disabled
- update
UPDATE - SSH acces for the eXtend platform has now been restored
Loading
Applying language and content...
Loading status page
Checking service and reports...
100 Heart Internet incidents · февраль 2026 г. — official updates, affected components, duration and resolution details.
UPDATE - SSH acces for the eXtend platform has now been restored
Update - SFTP will also be impacted but FTP will continue to work as per usual
Update 08/07 - These actions have now been completed
We've temporarily disabled SSH access to our eXtend shared hosting and cPanel platforms to protect against a critical Linux kernel vulnerability. What's affected: SSH access to eXtend shared hosting and cPanel platforms What's still working: Web hosting and email services via HTTPS Control panel access via HTTPS All other services unaffected Next steps: We're monitoring vendor kernel updates. SSH will be restored once patched kernels are deployed and verified INCIDENT: SSH Access Temporarily Disabled We've temporarily disabled SSH access to our shared hosting and cPanel platforms to protect against a critical Linux kernel vulnerability. What's affected: SSH access to eXtend shared hosting and cPanel platforms What's still working: Web hosting and email services via HTTPS Control panel access via HTTPS All other services unaffected Next steps: We're monitoring vendor kernel updates. SSH will be restored once patched kernels are deployed and verified
Emergency maintenance is to be completed across our KVM hosts to mitigate against CVE-2026-53359. VPS's may be restarted during this period. We apologise for any inconvenience this may cause during the maintenance period.
Update - the issue has now been resolved and all services are back to normal
We've had reports of some customers not being able to login to their mailboxes. Our team are aware and investigating urgently. Update 11:00 - we've identified the root cause, and a fix has been applied, we will continue working to ensure stability and will update again once fully resolved.
Update 03/06 - maintenance completed
We are performing emergency maintenance on our cPanel shared hosting platform to address a security vulnerability affecting the HTTP/2 module in Apache, NGINX, and IIS web servers. As a precautionary measure, we are temporarily disabling HTTP/2 on affected servers. This may cause brief downtime for sites on cPanel shared plans. There is no risk of data loss - this is a denial of service vulnerability only.
The connection issues have now been resolved.
We are currently experiencing mail delivery and connectivity issues. Our technical teams are actively investigating the root cause, and we will provide updates as soon as more information is available. Thank you for your patience.
This issus has now been resolved
We are aware of an issue affecting logins to Managed WordPress 2026 packages. Websites themselves remain fully operational; however, the SSO link within the control panel is currently not logging users in automatically as expected. Our platform team is actively investigating and working on a fix. We apologise for any inconvenience caused in the meantime.
There has been a vulnerability disclosed in ProFTP which may impact our services. As a precaution, we have disabled access whilst we investigate and mitigate where applicable. We will update when we have more details. The following error will be seen in FTP clients whilst we conduct this investigation: Connection attempt failed with "ECONNREFUSED - Connection refused by server". UPDATE: We have confirmed that ProFTP is not vulnerable to this exploit and we have re-enabled FTP. We apologize for the inconvenience.
We are actively mitigating a recently disclosed vulnerability (the "copy fail" CVE) in the Linux kernel, affecting components of our infrastructure. Patching is underway across our fleet. What to expect: Brief, intermittent service interruptions are possible throughout the day as servers are rebooted to apply mitigations. Reboots may occur without advance warning to ensure timely remediation and protect customer data. We expect individual reboots to be short, but some requests in flight may fail and need to be retried. What we're doing: Rolling out patches and rebooting affected systems on an accelerated timeline. Monitoring for impact and prioritizing customer-facing services. We appreciate your patience as we prioritize the security of the platform. We will post further updates here as mitigation progresses and a final update once all systems are confirmed patched.
The issue has now been resolved, we will continue to monitor the situation.
WebPros have announced a critical vulnerability has been detected in ALL versions of cPanel. Their guidance is to shut down ALL control panel access, including cPanel, WHM, Webmail and Webdisk. We have taken these steps on our shared hosting and recommend any customers with a cPanel VPS or Dedicated Server also complete these steps urgently. The impact of this will mean that access to cPanel and WHM is unavailable for any customers during this time. More information can be found here: https://support.cpanel.net/hc/en-us/articles/40073787579671-Critical-Vulnerability-with-cPanel-WHM-Login-Authentication UPDATE: Our shared cPanel servers and Managed VPS customers using cPanel were updated over night. This morning we are rotating root passwords and API keys before bringing the interfaces back online. We recommend any customers with a VPS or dedicated server with cPanel to update immediately.
Our platform team is currently investigating an issue caused by a spike in traffic to one of our mail servers. This may result in slower connections when accessing email via apps/clients or webmail. DDoS protection measures have been activated, and our SRE team is actively working to mitigate the impact while systems adjust to the increased traffic. We apologise for any inconvenience and will provide further updates as they become available.
Update - The issue has now been resolved, and everything should be back to normal. We wiill continue to monitor things from our side. The incident was caused by a sudden spike in traffic to the server, which triggered our DDoS protection and traffic filtering systems.
We are aware of some intermittent connecticity to imap.extendcp.co.uk. Our platform team are working on this as a priority.