This is a bit of a wild speculative post, so please excuse me if I'm talking nonsense.
At my current employer we host externally a few websites, one of which still resides on an ancient shared Linux hosting package, however the cPanel managing it is at version 88.0.13 and in the IT department we manage all hosting with a Marketing department and third parties managing the websites content. Just over a week ago the website on the shared hosting became unavailable, 500 errors when browsing, and in cPanel we discovered that the PHP version had been changed. We contacted the host, and they could only find ourselves having accessed the cPanel (via confirming our public IP address in logs).
This is where I get to the crux of this post, in that both our Marketing department and third parties have stated that they did not log into cPanel and change the PHP version (and I've no evidence to believe otherwise). Also I'm assuming that the cPanel environment provides a robust container on the shared host so that the version of PHP used will remain static unless a human chooses to change it?
So, weird question here, is there any possibility that cPanel had a "hiccup" and another cPanel account on the shared host changed their PHP version but it was ours that was effected by the change? If not, and cPanel is a robust trusted management platform, then I'm left with the possibility that someone is telling me a lie or an unknown third party knows the login credentials for our account and the change was malicious.
Thank you for any insight anyone can provide me with on the above.
At my current employer we host externally a few websites, one of which still resides on an ancient shared Linux hosting package, however the cPanel managing it is at version 88.0.13 and in the IT department we manage all hosting with a Marketing department and third parties managing the websites content. Just over a week ago the website on the shared hosting became unavailable, 500 errors when browsing, and in cPanel we discovered that the PHP version had been changed. We contacted the host, and they could only find ourselves having accessed the cPanel (via confirming our public IP address in logs).
This is where I get to the crux of this post, in that both our Marketing department and third parties have stated that they did not log into cPanel and change the PHP version (and I've no evidence to believe otherwise). Also I'm assuming that the cPanel environment provides a robust container on the shared host so that the version of PHP used will remain static unless a human chooses to change it?
So, weird question here, is there any possibility that cPanel had a "hiccup" and another cPanel account on the shared host changed their PHP version but it was ours that was effected by the change? If not, and cPanel is a robust trusted management platform, then I'm left with the possibility that someone is telling me a lie or an unknown third party knows the login credentials for our account and the change was malicious.
Thank you for any insight anyone can provide me with on the above.
