Security Notice – Drupal PSA-2014-003

Drupal Core – Highly Critical – Public Service announcement – PSA-2014-003

“This Public Service Announcement is a follow up to SA-CORE-2014-005 – Drupal core – SQL injection. This is not an announcement of a new vulnerability in Drupal.

Automated attacks began compromising Drupal 7 websites that were not patched or updated to Drupal 7.32 within hours of the announcement of SA-CORE-2014-005 – Drupal core – SQL injection. You should proceed under the assumption that every Drupal 7 website was compromised unless updated or patched before Oct 15th, 11pm UTC, that is 7 hours after the announcement.”

more information can be found at https://www.drupal.org/PSA-2014-003 or http://www.bbc.co.uk/news/technology-29846539

Welcome

So we’re off and running.

The Scottish Local Government Security Group, or Local Authority to us North of the Border has a new home, we’re currently putting the finishing touches to our WARP website.

Over the coming weeks more information on the group, it’s members and purpose will appear here.