Security Alerts & News
by Tymoteusz A. Góral

History
#1511 Drupal patches multiple security flaws in core engine
Drupal has issued a security update which resolves three security flaws, two of which are deemed critical.

Earlier this week, the open-source website content management system (CMS) released a security advisory detailing the latest security issues which have been both discovered and fixed.

The three vulnerabilities, assigned as SA-CORE-2016-004, affect versions 8.x of the CMS and users are now advised to upgrade to Drupal 8.1.10.

The first bug, considered the least dangerous of the three, is a problem which allows users without admin rights to set comment visibility on nodes they have rights to edit. By default, these user accounts should not be able to made these changes.
Read more
#1514 As we speak, teen social site is leaking millions of plaintext passwords
#1513 Sofacy APT targeting OSX machines with Komplex trojan
#1512 How Dropbox securely stores your passwords
#1511 Drupal patches multiple security flaws in core engine
#1510 MarsJoke ransomware mimics CTB-Locker
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12