CyberPanel Gets Hacked Frequently

CyberPanel Gets Hacked Frequently.

All kep all port open on aws security tab. What should i do shall i close all open port?

If yes what ports i need to keep open?

Typical TCP in ports:

Typical TCP out ports:

Typical UDP in ports:

Typical UDP out ports:

Common DNS, ssh, smtp, http, https, mail ports +
7080 is for OLS
8090 is for Cyberpanel
2376 is for secure Docker client communication
2812 is for monit
8080 [cannot remember why I opened that one, may be related to docker too]
61208 is for glances