PC World

Drupal to secure its update process with HTTPS

Developers of the popular Drupal content management system are working to secure the software’s update mechanism after a researcher recently found weaknesses in it. Last week, researcher Fernando ...
CSOonline

Drupal sites at risk due to insecure update mechanism

The update mechanism of the popular Drupal content management system is insecure in several ways, allowing attackers to trick administrators into installing malicious updates. Researcher Fernando ...
Bleeping Computer

Drupal critical update to fix bug with high exploitation risk

Drupal has announced a "core security release" scheduled for later today, warning that threat actors might develop exploits within hours of the update disclosure. Administrators are urged to reserve ...
heise online

CMS Drupal: Highly critical Drupal core update announced for May 20

A critical security update for Drupal Core will be released on the evening of Wednesday, May 20. Admins should install it quickly. In the advance notice of the security patch, the Drupal security team ...