PC World

Drupal to secure its update process with HTTPS

Developers of the popular Drupal content management system are working to secure the software’s update mechanism after a researcher recently found weaknesses in it. Last week, researcher Fernando ...
Bleeping Computer

Drupal critical update to fix bug with high exploitation risk

Drupal has announced a "core security release" scheduled for later today, warning that threat actors might develop exploits within hours of the update disclosure. Administrators are urged to reserve ...
CMS Wire

New Security Updates for Drupal Web CMS

Drupal is at it again with another round of updated releases. While not major releases, these new versions from Drupal do address a number of security fixes and bugs that were brought to their ...
CSOonline

Drupal sites at risk due to insecure update mechanism

The update mechanism of the popular Drupal content management system is insecure in several ways, allowing attackers to trick administrators into installing malicious updates. Researcher Fernando ...
Homeland Security Today

Drupal Releases Security Updates

Drupal has released security updates to address vulnerabilities in Drupal 7.x, 8.8.x, 8.9.x, and 9.0.x. An attacker could exploit some of these vulnerabilities to obtain sensitive information or ...