Tons of Big Websites Fall Victim to Drupal Vulnerability

Tue, May 8, 2018

A new cryptojacking campaign is going around which leverages a vulnerability in the Drupal content management system. Security researcher Troy Mursch has a nice writeup on the issue and also runs a list of affected sites.

Basically the vulnerability is exploited to install cryptomining javascript code which then leverages the CPU of website visitors to mine cryptocurrency.

Among the affected sites are also such names as Lenovo, the UCLA, the Turkish Revenue Administration Aydin Tax Office (oh sweet irony), and DLink Brazil. Serving as an important reminder what can happen if you do not update your shit!