• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login

Blog Category: Drupal Security

drupal-security-blog-category

Read posts about Drupal security including the latest vulnerability disclosures, technical details, and mitigation steps. Learn the best practices to clean and protect your Drupal database and server files. If you are looking for help with a security incident our free guide can help fix your hacked Drupal site and our team is always here to help.

Security Lessons Learned from 2021

July 14, 2022Victor Santoyo

Security Lessons Learned from 2021

There’s no one specific topic or target or audience when it comes to website security. But when you clean enough hacked websites, you start to see trends and techniques emerge in the landscape. In my last presentation at WordCamp Europe, I dove into the latest…

Read More about Security Lessons Learned from 2021

Labs Note

October 6, 2020Krasimir Konov

Backdoor Shell Dropper Deploys CMS-Specific Malware

A large majority of the malware we find on compromised websites are backdoors that allow an attacker to maintain unauthorized access to the site and execute whatever commands they want….

Read More about Backdoor Shell Dropper Deploys CMS-Specific Malware

New Drupal Website Security Best Practices Guide

May 7, 2020Justin Channell

New Drupal Website Security Best Practices Guide

When it comes to content management systems (CMS) for websites, Drupal is a highly flexible and extendible open-source solution. It is often preferred by technical developers and large government and…

Read More about New Drupal Website Security Best Practices Guide

Hacked Website Threat Report 2019

January 28, 2020Rianna MacLeod

Hacked Website Threat Report – 2019

The threat landscape for website owners is constantly shifting on a regular basis — and it’s becoming increasingly more complex. As attackers continue to develop tools and find new vulnerabilities…

Read More about Hacked Website Threat Report – 2019

RawGit CDN

July 31, 2018Denis Sinegubko

RawGit CDN is Abused by CryptoLoot Cryptominers

Recently, we came across another way to use files from GitHub repositories in malware infections. This time the infections weren’t via GitHub.io, raw.githubusercontent.com, or github.com/<user>/<repository>/raw/ URLs. The new trick involved…

Read More about RawGit CDN is Abused by CryptoLoot Cryptominers

CoinImp

July 5, 2018Denis Sinegubko

CoinImp Cryptominer and Fully Qualified Domain Names

We are all familiar with the conventional domain name notation, where different levels are concatenated with the full stop character (period). E.g. “www.example.com”, where “www” is a subdomain, “example” is…

Read More about CoinImp Cryptominer and Fully Qualified Domain Names

Drupal Infections - Tech Support Redirect

May 8, 2018Denis Sinegubko

Massive localstorage[.]tk Drupal Infection

After a series of critical Drupal vulnerabilities disclosed this spring, it’s not surprising to see a surge of massive Drupal infections like this one: Massive #Drupal infection that redirects to…

Read More about Massive localstorage[.]tk Drupal Infection

Hacked Website Report 2017

April 6, 2018Rianna MacLeod

Hacked Website Trend Report – 2017

We are proud to be releasing our latest Hacked Website Trend Report for 2017. This report is based on data collected and analyzed by the Sucuri Remediation Group (RG), which…

Read More about Hacked Website Trend Report – 2017

February 26, 2018Juliana Lewis

New Guide on How to Clean a Hacked Website

Our mission at Sucuri is to make the internet a safer place and that entails cleaning up hacked websites. We have teams who actively research website vulnerabilities and who are…

Read More about New Guide on How to Clean a Hacked Website

cryptominers on hacked sites blog header

October 25, 2017Denis Sinegubko

Cryptominers on Hacked Sites – Part 2

Last month we wrote about how the emergence of website cryptocurrency miners resulted in hackers abusing the technology by injecting the CoinHive miners into compromised sites without the consent of…

Read More about Cryptominers on Hacked Sites – Part 2

July 11, 2017Alycia Mitchell

New Guide on How to Clean a Hacked Drupal Sites

Drupal is an open-source content management system and website builder with a unique structure that allows it to be highly flexible and extendible. For these reasons and more, it’s favored…

Read More about New Guide on How to Clean a Hacked Drupal Sites

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.