[kwlug-disc] Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002
Khalid Baheyeldin
kb at 2bits.com
Fri Apr 13 23:53:25 EDT 2018
The exploits have started.
Coin mining seems to be what the crackers aim for.
PSA
https://www.drupal.org/psa-2018-002
Details
https://pantheon.io/blog/drupal-sa-2018-002-weaponized-coin-mining-exploits-wild
If you updated your sites within an hour or two of the original
update, you don't need to do anything else.
If you have not updated, check your CPU usage for coin mining exploits.
More information about the kwlug-disc
mailing list