One of the famous Content management system(CMS) find them-self as a
victim to security breach. Unknown hackers breached the drupal.org by
exploiting a vulnerability in third-party software installed on their
server.
Hackers managed to gain access to the account information on Drupal.org
and groups.drupal.org. The information exposed includes usernames,
email addresses, country information and hashed passwords.
According to the official announcement,
the security breach is result of a vulnerability within drupal.org
itself. The users who running the drupal cms are not affected.
The team said they don't store credit card info on their site and there's no evidence that card numbers have been intercepted.
Drupal has now reset the Drupal.org account holder passwords and asked
users to pick a new password at their next login. Users are also
advised to change the password , if they used the same password
somewhere else
No comments:
Post a Comment