Government Technology

Why Big Sites Run Drupal

For the Georgia Technology Authority (GTA), the decision to dump its aging content management system (CMS) was easy. Running 65 state government websites on two different versions of proprietary ...
PC World

Drupal sites at risk due to insecure update mechanism

The update mechanism of the popular Drupal content management system is insecure in several ways, allowing attackers to trick administrators into installing malicious updates. Researcher Fernando ...
Nextgov

Hack Strikes Feds in Drupal.org Community

Websites running the widely-used open source content management system are unaffected. Federal website managers registered on Drupal.org or Drupal Groups, the developer and community sites for the ...
ZDNet

Over 115,000 Drupal sites still vulnerable to critical flaw

Good news and bad news. Two months after a "highly critical" security flaw was found in Drupal, a widely used web-based content management system, most of the million-plus sites thought to be affected ...
Bleeping Computer

Drupal Fixes Drupalgeddon2 Security Flaw That Allows Hackers to Take Over Sites

The Drupal CMS team has fixed a highly critical security flaw that allows hackers to take over a site just by accessing an URL. Drupal site owners should immediately —and we mean right now— update ...
Threat Post

Drupal Issues Highly Critical Patch: Over 1M Sites Vulnerable

Drupal developers are urged to patch a bug that allows attackers to take over a site simply by visiting it. Drupal released a patch for a “highly critical” flaw in versions 6, 7 and 8 of its CMS ...