Tuesday, November 4, 2014

Drupal Hacks allowing purps to build massive botnet...

Over the past month we have been monitoring a situation with Drupal based web site security and several vulnerabilities that were being distributed. Research conducted the past week indicated that there are 12,621,419 host that have been hijacked as a direct result of the Drupal vulnerabilities.

"If you are running Drupal the best advice we can give you right now is to shutdown your website, archive the database data and then use the migration scripts to install the latest non vulnerable version".

Host infections have slowed now as most of the vulnerable systems are already hijacked.

There have been a rise in botnet's after this issue. We are seeing much larger DDOS attacks taking place and it is believed that the increase in infected bots is partially the reason behind these more successful attacks.

No comments:

Post a Comment