Update 11 - 3rd May 02:10pm AEST

cloud3 has been returned to service. We are still working on migrating clients to different infrastructure, but at least those who remained should be functional now. We will compile a post-mortum of the events over the past 4 days. But for now we are watching how things are going, and working on cleaning up the existing migration work.

Update 10 - 3rd May 11:42am AEST

We are continuing to migrate clients to new infrastructure. The work continues. If you wish to recieve a progress update we are happy to provide one via email support@momentumhosting.com.au. 

Thank you.

Update 9 - 3rd May 2:36am

We have fully or partially restored as many client accounts that we have either domain management control or DNS control onto new infrastructure, with the remaining clients who we require assistance from them to update their DNS or Name Servers still to come.
We will be reaching out individually to clients who need to update their nameservers or A records as quickly as we can.

If any affected clients have:

a. Your own managed DNS (i.e Cloudflare)
Please update your A record and www record to 139.180.183.136 

or b. Ability to update name servers at your domain registrar (i.e GoDaddy, MelbourneIT, Crazy Domains etc)
Please change your name servers from any that match ns1.momentumdns.com, ns2.momentumdns.com, ns1.cpanel88.net, ns2.cpanel88.net and update them to:
- ns1.momentumcluster.com
- ns2.momentumcluster.com

And after you make the update, please inform us immediately via email (reply to any email notice we have ever sent) so that we can prioritise your restore.

This is our top priority and we will provide more updates as they come in. 

Update 8 - 2nd May 6:08pm

After a fruitless day engaging with our data center partner (Digital Pacific) and their failure to restore connectivity to our network within a reasonable timeframe, we have had to make the decision to migrate affected customers to different infrastructure immediately. We have already started this process, it will be manual and laborious but we can't wait for third parties to drag their feet. We want to assure everyone that we will provide a complete account of everything that has happened over the previous 48 hours to all affected customers, our deepest apologies for this outage, and continued dedication to our customers. 

When the situation was within our control we had everything planned, actioning and was succeeding, we have now encountered a critical hardware fault, and a provider with limited support resources over the weekend. The datacenter is either unable or unwilling to fix within a timely manner so we have been forced to take additional recovery action to restore our clients services. We will provide another update as soon as we can, but we wanted to let you know this has not dropped off our radar, we have been working on this for 3 days straight.

Any affected customers will receive contact from us via email and phone as soon as we have your migration complete if we require your assistance with updating your name servers, or DNS records as we don't control everyones infra setup, so we will liase personally with what we need.

Please know that we are working dilligently to resolve this and we are dedicated to our customers services being online.

Update 7 - 2nd May 11:07am

After another all nighter the server has now encounted a critical hardware failure that requires the techs to perform work on the hardware directly to restore connectivity. Please be patient as we push for the work to be completed quickly.

Update 6 - 12:50pm AEST

Customer accounts are coming online faster now, we are checking each one thoroughly to ensure that the restore process was successful.

Update 5 - 11:10am AEST

All databases have been restored. Most websites are back online. We are working on the remaining accounts and will update again soon. If you've reached out already thank you for your understanding, and thank you all for your patience while we undertake this laborous task. Reach out if you have any questions.

Update 4 - 9:46am AEST

Database restores have almost completed, we should see a lot of websites come back online as soon as it is finished restoring. We appreciate your patience while we work on this problem for you.

Update 3 - 6:51am AEST

We have restored some of affected accounts within the last 10 hours, the remaining accounts are awaiting the restore of the databases which is approximately 3/4 complete. No ETA at this time, we are working hard to restore everything as soon as possible.

Update 2 - 5:55am AEST

One of our shared hosting servers (cloud3) was affected by a critical authentication bypass vulnerability in cPanel/WHM (CVE-2026-41940). The vulnerability was disclosed by the vendor on 28 April 2026, with the patch released the same day. There was no advance warning to hosting providers. Security researchers have since established that this vulnerability had been actively exploited as a zero-day from at least 23 February 2026, more than two months before public disclosure.

The incident on cloud3 resulted in deletion of customer data on the affected server. We are restoring all affected accounts from off-site backups (websites, databases, and mail). Due to the volume of data, restoration is in progress and will continue over the next 24 to 72 hours.

Our other servers were patched on 28 April 2026 and were not affected by this incident. 

No client action is required at this stage. Mail sent to your domains during the outage is being queued by sending servers and will be delivered once your account is restored.

We will update this page as services come back online and publish a full incident report once restoration is complete.

If you're interested in the scale of this problem you can read the techincal breakdown here: https://labs.watchtowr.com/the-internet-is-falling-down-falling-down-falling-down-cpanel-whm-authentication-bypass-cve-2026-41940/

For urgent matters, contact 1800 704 728 or email support@momentumhosting.com.au we are actively monitoring tickets replies in under 15 minutes currently.

Update 1 - 1 May 2026 5:10am AEST

We have contained the exploted machine and have begun restoring user accounts files back on to the server. There is a large number of files to restore, we are working as fast as we can to get everyone back up and running. At this stage it looks like we have lost some customer emails that were received during this window, and possibly prior. We won't know for sure until the restore is complete and our full audit has occured.

We appreciate your patience while we work on this problem, and we want to assure everyone that we are working as quickly as possible - no one has slept since yesterday, we're commited to this issue until it's resolved.

Service Incident - 30 April 2026 6:38pm AEST

One of our shared hosting servers (cloud3) was affected by the cPanel/WHM authentication bypass vulnerability disclosed publicly on 28 April 2026 (CVE-2026-41940). This vulnerability affected all supported cPanel versions and was being actively exploited as a zero-day before a patch was available.

The incident resulted in data deletion on the affected server. We are currently restoring all affected accounts from off-site backups. Websites, databases, and mail are all being restored.

Due to the volume of data involved, restoration is taking longer than we would like. We are working on it continuously and will update this page as services come back online.

No action is required from clients at this stage. Once your account is restored, all websites, email accounts, and databases will resume functioning as normal. Mail sent to your domains during the outage is being queued by sending servers and will be delivered once restoration completes.

We will publish a full incident report once services are fully restored.