You are posting a comment about...
More Bad News for Drupal Sites
Apparently, there's more bad news for Drupal site owners. If you didn't perform the latest upgrade within 7 hours of the announcement (by 11PM UTC on 10/15/14) your site has almost certainly been hacked. Worse, the server it's on could possibly be breached as well. Drupal security experts Michael Hess and Bevan Rudge issued a public service warning on the matter that you can read,here.,
Drupal suggests the following steps to fix your problems:
- Take the website offline by replacing it with a static HTML page;
- Notify the server's administrator emphasizing that other sites or applications hosted on the same server might have been compromised via a backdoor installed by the initial attack;
- Consider obtaining a new server, or otherwise remove all the website's files and database from the server. (Keep a copy safe for later analysis);
- Restore the website (Drupal files, uploaded files and database) from backups from before 15 October 2014;
- Update or patch the restored Drupal core code;
- Put the restored and patched/updated website back online;
- Manually redo any desired changes made to the website since the date of the restored backup;
- Audit anything merged from the compromised website, such as custom code, configuration, files or other artifacts, to confirm they are correct and have not been tampered with,
- While recovery without restoring from backup may be possible, this is not advised because backdoors can be extremely difficult to find. The recommendation is to restore from backup or rebuild from scratch.
If you need assistance with your web presence, 111 Web Studio can build you a custom website that is as secure as is offered by the state-of-the-art in Internet security. We don't use Drupal and take the utmost care in handling customer information. Give us a call at 877.397.7605 or contact us for more information.