The agencies say it’s vital to prioritize patching. Otherwise, we’re making it easy for attackers who don’t have to work at finding 0 days. This post appeared first on Naked…
Browsing Categorydrupal
Monero cryptominers hijack hundreds of unpatched Docker hosts
A recently-disclosed vulnerability in the Docker containerisation platform is being exploited by cybercriminals to mine the Monero (XMR) cryptocurrency on hundreds of servers. This post appeared first on Naked Security…
Drupal Vulnerability (CVE-2019-6340) Can Be Exploited for Remote Code Execution
by Branden Lynch (Threats Analyst) The content management framework Drupal recently fixed a vulnerability (CVE-2019-6340) in their core software, identified as SA-CORE-2019-003. The flaw is categorized as highly critical, exposing…
Is Your Site Protected Against Drupal Security Flaws?
Drupal is a leading open source content management tool that hosts a significant portion of the most popular websites on the internet. If you have not heard about the Drupal…
Threat Actors Prey on Drupalgeddon Vulnerability to Mass-Compromise Websites and Underlying Servers
IBM Security’s Managed Security Services (MSS) team monitors the enterprise threat landscape on an ongoing basis, detecting and mapping new threats as they emerge. In a recent investigation, our MSS…
Drupal Vulnerability (CVE-2018-7602) Exploited to Deliver Monero-Mining Malware
by Trend Micro Smart Home Network and IoT Reputation Service Teams We were able to observe a series of network attacks exploiting CVE-2018-7602, a security flaw in the Drupal content…