Jump to content


Photo

Experts are observing Drupalgeddon2 (CVE-2018-7600) attacks in the


  • Please log in to reply
3 replies to this topic

#1 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,779 posts

Posted 19 April 2018 - 06:18 PM

Experts are observing Drupalgeddon2 (CVE-2018-7600) attacks in the wild

After the publication of a working Proof-Of-Concept for Drupalgeddon2 on GitHub experts started observing attackers using it to deliver backdoors and crypto miners. At the end of March, the Drupal Security Team confirmed that a “highly critical”...

April 19, 2018  By Pierluigi Paganini   Posted In  Breaking News  Hacking  

More:
https://securityaffa...n2-attacks.html

 



#2 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,779 posts

Posted 26 April 2018 - 05:11 PM

See in addition please:

 

CVE-2018-7602 – Drupal addressed a new vulnerability associated with Drupalgeddon2 flaw

The new flaw tracked as CVE-2018-7602, is a highly critical remote code execution issue, Drupal team fixed it with the release of versions 7.59, 8.4.8 and 8.5.3. Drupal team has released updates for versions 7 and 8 of the popular content management...

April 26, 2018  By Pierluigi Paganini   Posted In  Breaking News  Cyber Crime  Hacking  

More:
https://securityaffa...palgeddon2.html


#3 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,779 posts

Posted 03 May 2018 - 07:50 PM

[UPDATE:]

 

May 3, 2018 , 12:57 pm

Kitty Cryptomining Malware Cashes in on Drupalgeddon 2.0
by Lindsey O'Donnell
Categories: Cryptography, Hacks, Vulnerabilities, Web Security    

Bad actors are leveraging the critical Drupal vulnerability to install cryptomining malware on servers and browsers,

More:
https://threatpost.c...don-2-0/131668/

 



#4 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,779 posts

Posted 08 May 2018 - 09:08 PM

Please raed the latest information about:

 

Hackers continue to hack Drupal installs to install backdoors and inject cryptocurrency malware

Recently security experts discovered two critical vulnerabilities in the Drupal CMS (CVE-2018-7600 and CVE-2018-7602), and cybercriminals promptly attempted to exploit them in the wild. The hackers started using the exploits for the above vulnerabilities...

May 8, 2018  By Pierluigi Paganini   Posted In  Breaking News  Cyber Crime  Hacking  

Read the whole story here:
https://securityaffa...cy-malware.html