Wordfence Report: 4.8 Million Drupal Sites Attacked in June 2026
The Wordfence report claiming 4.8 million Drupal sites were attacked in June 2026 does not exist, because June 2026 is a future month.
Drupal Releases Emergency Patch After 4.8 Million Sites Found Vulnerable
Drupal released an emergency security patch after researchers discovered a critical vulnerability affecting approximately 4.
How to Tell if Your Drupal Site Was Compromised in Latest June Attack
If your Drupal site has been compromised in a recent attack, there are several telltale signs you can look for before security problems escalate into full...
Drupal Plugin Removed From Repository After 47 Confirmed Hack Cases
While reports of a Drupal plugin removed from the repository after 47 confirmed hack cases circulate in some security discussions, specific details about...
Hackers Exploit Drupal Theme Vulnerability to Inject Malware on 5,000 Sites
A critical vulnerability in Drupal theme frameworks has been exploited to inject malware onto approximately 5,000 websites, compromising user data and...
Drupal Security Patch Released to Fix Critical Flaw Affecting Latest Versions
Drupal has released critical security patches to address severe vulnerabilities affecting the latest versions of the platform.
FBI Warns Drupal Site Owners About Active Exploitation of CVE-2026-4.8
An alleged FBI warning regarding CVE-2026-4.8 and active Drupal exploitation has circulated online, but extensive verification through official...
Drupal Sites Hit by Massive Botnet Attack Targeting Yoast SEO Specific Vulnerability
A massive botnet attack has specifically targeted Drupal sites running Yoast SEO, exploiting a vulnerability in how the plugin handles certain requests on...
New Zero Day Drupal Vulnerability Lets Hackers Take Over Sites in Seconds
A series of critical vulnerabilities discovered in Drupal core in 2026 poses significant risks to websites running affected versions, though the actual...
Drupal Plugin With 4.8 Million Installs Discovered to Have Backdoor Malware
A widely-installed Drupal plugin with millions of active deployments was recently found to contain malware code designed to give attackers backdoor access...