searchtwitterarrow rightmail strokearrow leftmail solidfacebooklinkedinplusangle upmagazine plus
Help Net Security - Daily information security news with a focus on enterprise security.
Help Net Security - Daily information security news with a focus on enterprise security.
  • News
  • Features
  • Expert analysis
  • Videos
  • Events
  • Whitepapers
  • Industry news
  • Product showcase
  • Newsletters

Drupal

Get our top stories in your inbox

CMS-based sites under attack: The latest threats and trends

May 3, 2022

Payment card skimmers are becoming more common in exploit kits affecting WordPress websites and attackers are spending more time customizing them to avoid detection, …

Small businesses urged to protect their customers from card skimming

November 23, 2021

With Black Friday and Cyber Monday quickly approaching, the UK National Cyber Security Centre (NCSC) is urging small online shops to protect their customers from card skimming …

Acquia renews Drupal Steward Program support to address always-evolving security risks

August 11, 2021

Acquia announced that it is renewing its founding partnership support of the Drupal Steward Program, a web application firewall introduced by the Drupal Association and …

Out-of-band Drupal security updates fix bugs with known exploits

November 27, 2020

Drupal has released out-of-band security updates to fix two critical code execution flaws (CVE-2020-28948, CVE-2020-28949) in Drupal core, as “there are known exploits …

Drupal-based sites open to attack via double extension files (CVE-2020-13671)

November 23, 2020

Admins of sites running on Drupal are urged to plug a critical security hole (CVE-2020-13671) that may be exploited by attackers to take over vulnerable sites. They have also …

Drupal fixes three vulnerabilities, including one RCE

June 19, 2020

Drupal’s security team has fixed three vulnerabilities in the popular content management system’s core, one of which (CVE-2020-13663) could be exploited to achieve …

WordPress and Apache Struts weaponized vulnerabilities on the rise

March 17, 2020

Vulnerabilities in leading web and application frameworks, if exploited, can have devastating effects like the Equifax breach which affected 147 million people, according to …

Latest WinRAR, Drupal flaws under active exploitation

February 26, 2019

CVE-2018-20250, a WinRAR vulnerability that allows attackers to extract a malicious executable to one of the Windows Startup folder to be executed every time the system is …

Highly critical Drupal RCE flaw could lead to new Drupalgeddon, patch now!

February 21, 2019

A new Drupalgeddon might be brewing: a highly critical vulnerability affecting all versions of the popular content management framework could allow hackers to take over …

Make-A-Wish website compromised to serve cryptojacking script

November 20, 2018

Visitors of the international website of the US-based non-profit Make-A-Wish Foundation have had their computing power misused to covertly mine cryptocurrency, Trustwave …

Traffic manipulation and cryptocurrency mining campaign compromised 40,000+ machines

June 7, 2018

Unknown attackers have compromised 40,000+ servers, networking and IoT devices around the world and are using them to mine Monero and redirect traffic to websites hosting tech …

Crypto Me0wing attacks: Kitty cashes in on Monero

May 24, 2018

It’s been a month since the first Drupalgeddon 2.0 RCE (SA-CORE-2018-002/CVE-2018-7600) exploit was first published, unleashing its destruction into the wild… and …

Posts navigation

1 2

Featured news

  • Hands-on threat simulations: empower cybersecurity teams to confidently combat threats
  • How global enterprises navigate the complex world of data privacy
  • GitLab fixes critical vulnerability, patch now! (CVE-2023-5009)
CIS Benchmarks Communities: Where configurations meet consensus

Sponsored

eBook: 9 Ways to Secure Your Cloud App Dev Pipeline

Free entry-level cybersecurity training and certification exam

Guide: Attack Surface Management (ASM)

Don't miss

Hands-on threat simulations: empower cybersecurity teams to confidently combat threats

How global enterprises navigate the complex world of data privacy

Balancing cybersecurity with convenience and progress

GitLab fixes critical vulnerability, patch now! (CVE-2023-5009)

Apple fixes 3 zero-day vulnerabilities exploited to compromise iPhones

Cybersecurity news
Help Net Security - Daily information security news with a focus on enterprise security.
© Copyright 1998-2023 by Help Net Security
Read our privacy policy | About us | Advertise
Follow us