1. Blog
  2. Our site was hacked, and indecencies were hung on the main page!
/sites/default/files/2022-02/Ddos_0.jpg

"Our site was hacked, and indecencies were hung on the main page!" - why we recommend a security update monitoring service.

 We recently wrote a list of infrastructure services that are part of our support. So that these services do not remain simply difficult words for you, we will tell you about each in more detail.

  In order for the site not to be hacked and to be safe, you need to update to the latest versions of its three components:

  • ✔ Drupal and modules;
  • ✔ third-party vendor libraries that the site uses;
  • ✔ web server and all programs installed on it, including database, Linux operating system, etc.

  Why all three? For example, the site itself is fine, and the libraries it uses and the OS are not secure.

  In the open source there is a feature: any vulnerability is public. The publication of critical vulnerabilities and "patches" are warned in advance. Minor vulnerabilities are closing with the release of new versions of programs and libraries. This achieves safety. But attackers already know how to use this if the site is not updated on time.

Sounds scary, but Drupal is a responsible platform, so regularly releases security updates. That is, any gap in the system is quickly protected.

 "Who needs my site? And what if I don't upgrade? " Vulnerabilities will accumulate. And when hackers get to your site, they will have a lot of fun: they will be able to encrypt the server and extort money, blackmail the removal of the site, or use the site in DDoS attacks.

 And this is both reputational damage in the form of dissatisfied customers and financial: the site falls out of the search for a while, which means the costs of promotion - into the garbage. Hosting and server can get lost, and if orders go there, wait for losses.

 The site should not be in a vulnerable state. You need to learn about the release of security updates as soon as possible and roll them out to the site as quickly as possible.

 We offer a service that will automatically monitor the release of Drupal security updates, its modules, vendor libraries and all components of the web server. The service is integrated with our Redmine and you will not need to have a ticket with the task - our team will receive it automatically, implement the update and test it.

 Install security updates on time with:  initlab.ru

Add new comment

About text formats