Help to Drupal websites recover from being compromised


This information is useful should your Drupal site get compromised. Please report any details to the security team at security@drupal.org The security team is unable to help with individual sites, but does like to keep track of compromised sites to see patterns. Resume: Step 1: Make a forensic copy of the site Step 2: Decide to keep, rollback, rebuild, or throw the site away. Step 3: Who should you notify? Step 4: Should you take the site offline? Step 5: Begin investigating the attack Step 6: Revisit the question: remediate, rebuild, or trash the site?

Read the complete article
Source: www.drupal.org


Add new comment

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Image CAPTCHA