Security Notice – Drupal PSA-2014-003

Drupal Core – Highly Critical – Public Service announcement – PSA-2014-003

“This Public Service Announcement is a follow up to SA-CORE-2014-005 – Drupal core – SQL injection. This is not an announcement of a new vulnerability in Drupal.

Automated attacks began compromising Drupal 7 websites that were not patched or updated to Drupal 7.32 within hours of the announcement of SA-CORE-2014-005 – Drupal core – SQL injection. You should proceed under the assumption that every Drupal 7 website was compromised unless updated or patched before Oct 15th, 11pm UTC, that is 7 hours after the announcement.”

more information can be found at or


So we’re off and running.

The Scottish Local Government Security Group, or Local Authority to us North of the Border has a new home, we’re currently putting the finishing touches to our WARP website.

Over the coming weeks more information on the group, it’s members and purpose will appear here.