Data integrity protection in Drupal 10.x – how lock conditions might fail

I was doing some pentesting on a Drupal 10.x application that some colleagues built; I have not reviewed the source code. The dynamic vulnerability scanner I use provoked some exceptions related to a failure to obtain locks on various obje… Continue reading Data integrity protection in Drupal 10.x – how lock conditions might fail

CMS-based sites under attack: The latest threats and trends

Payment card skimmers are becoming more common in exploit kits affecting WordPress websites and attackers are spending more time customizing them to avoid detection, Sucuri’s latest research report has revealed. “Unlike most compromises we … Continue reading CMS-based sites under attack: The latest threats and trends

Small businesses urged to protect their customers from card skimming

With Black Friday and Cyber Monday quickly approaching, the UK National Cyber Security Centre (NCSC) is urging small online shops to protect their customers from card skimming cyber criminals. As part of NCSC’s Active Cyber Defence programme, the organ… Continue reading Small businesses urged to protect their customers from card skimming

Acquia renews Drupal Steward Program support to address always-evolving security risks

Acquia announced that it is renewing its founding partnership support of the Drupal Steward Program, a web application firewall introduced by the Drupal Association and operated jointly with the Drupal Security team. Acquia implemented Drupal Steward p… Continue reading Acquia renews Drupal Steward Program support to address always-evolving security risks