The world of Internet acquired name. The Internet World - New Portal / Forum / Blog with news, athletically, music, hardware, software, internet, games and relaxed talk. | Ο κόσμος του Internet απέκτησε όνομα. Το The Internet World - Νέο Portal / Forum / Blog με ειδήσεις, αθλητικά, μουσική, hardware, λογισμικό, διαδίκτυο, παιχνίδια και χαλαρή κουβεντούλα

Facebook Page Facebook Group Twitter Linkedin Youtube MySpace RSS Feed The Internet World (Blog) By Wordpress Blog Powered By Blogspot Blog Powered By Wordpress


Results 1 to 1 of 1

Thread: Εκατομμύρια sites που χρησιμοποιούν την πλατφόρμα διαχείρισης Drupal έπεσαν θύμα επίθεσης

  1. #1
    Ομάδα Διαχείρισης
    Points: 104,721, Level: 100
    Level completed: 0%, Points required for next Level: 0
    Overall activity: 0%
    Achievements:
    Created Blog entryVeteranOverdriveYour first Group50000 Experience Points
    admin's Avatar
    Join Date
    Sep 2006
    Location
    Athens , Greece
    Posts
    1,868
    Country: Greece
    Points
    104,721
    Level
    100
    Blog Entries
    1
    Downloads
    5
    Uploads
    19

    Εκατομμύρια sites που χρησιμοποιούν την πλατφόρμα διαχείρισης Drupal έπεσαν θύμα επίθεσης

    Έως 12 εκατομμύρια sites είναι πιθανό να έχουν πέσει θύματα επίθεσης από επιτιθέμενους που εκμεταλεύτηκαν ένα bug του ευρέως χρησιμοποιούμενου Drupal, που επιτρέπει την διαχείριση εικόνων, video και ήχου σε ένα website.

    Σύμφωνα με την ανακοίνωση του Drupal, όσοι δεν έχουν εγκαταστήσει το patch για ένα πρόσφατα εντοπισμένο bug, πρέπει να θεωρήσουν πως έχουν πέσει θύμα χακαρίσματος από αυτοματοποιημένες επιθέσεις που εκμεταλεύτηκαν το κενό.

    Drupal Core - Highly Critical - Public Service announcement - PSA-2014-003

    Posted by Drupal Security Team on October 29, 2014 at 2:39pm
    Advisory ID: DRUPAL-PSA-2014-003
    Project: Drupal core
    Version: 7.x
    Date: 2014-October-29
    Security risk: 25/25 ( Highly Critical) AC:None/A:None/CI:All/II:All/E:Exploit/TD:All
    Description
    This Public Service Announcement is a follow up to SA-CORE-2014-005 - Drupal core - SQL injection. This is not an announcement of a new vulnerability in Drupal.

    Automated attacks began compromising Drupal 7 websites that were not patched or updated to Drupal 7.32 within hours of the announcement of SA-CORE-2014-005 - Drupal core - SQL injection. You should proceed under the assumption that every Drupal 7 website was compromised unless updated or patched before Oct 15th, 11pm UTC, that is 7 hours after the announcement.

    Simply updating to Drupal 7.32 will not remove backdoors.

    If you have not updated or applied this patch, do so immediately, then continue reading this announcement; updating to version 7.32 or applying the patch fixes the vulnerability but does not fix an already compromised website. If you find that your site is already patched but you didn’t do it, that can be a symptom that the site was compromised - some attacks have applied the patch as a way to guarantee they are the only attacker in control of the site.

    Data and damage control

    Attackers may have copied all data out of your site and could use it maliciously. There may be no trace of the attack.

    Take a look at our help documentation, ”Your Drupal site got hacked, now what”

    Recovery

    Attackers may have created access points for themselves (sometimes called “backdoors”) in the database, code, files directory and other locations. Attackers could compromise other services on the server or escalate their access.

    Removing a compromised website’s backdoors is difficult because it is not possible to be certain all backdoors have been found.

    The Drupal security team recommends that you consult with your hosting provider. If they did not patch Drupal for you or otherwise block the SQL injection attacks within hours of the announcement of Oct 15th, 4pm UTC, restore your website to a backup from before 15 October 2014:

    Take the website offline by replacing it with a static HTML page
    Notify the server’s administrator emphasizing that other sites or applications hosted on the same server might have been compromised via a backdoor installed by the initial attack
    Consider obtaining a new server, or otherwise remove all the website’s files and database from the server. (Keep a copy safe for later analysis.)
    Restore the website (Drupal files, uploaded files and database) from backups from before 15 October 2014
    Update or patch the restored Drupal core code
    Put the restored and patched/updated website back online
    Manually redo any desired changes made to the website since the date of the restored backup
    Audit anything merged from the compromised website, such as custom code, configuration, files or other artifacts, to confirm they are correct and have not been tampered with.
    While recovery without restoring from backup may be possible, this is not advised because backdoors can be extremely difficult to find. The recommendation is to restore from backup or rebuild from scratch.

    For more information, please see our FAQ on SA-CORE-2014-005.


    Πηγή : BBC

    ADSLgr.com
    The Internet World - Hidden Content
    Ομάδα Διαχείρισης και Συντονισμού

    Hidden Content

    Αν έχετε κινητό τηλέφωνο Apple IPhone η κάποια συσκευή Android ή κάποιο Τablet (Android/IPad). Δοκιμάστε το Hidden Content (Hidden Content or Hidden Content ) ή το Hidden Content (Hidden Content or Hidden Content or Hidden Content or Hidden Content ) ώστε να αποκτήσετε πρόσβαση στην ιστοσελίδα μας

    Hidden Content στο The Internet World σημαίνει ότι μεγαλώνετε την online παρέα μας.


  2. # ADS
    Circuit advertisement
    Join Date
    Always
    Location
    Advertising world
    Posts
    Many


     

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  



Use OpenDNS