SA-CORE-2018-002: All our websites are secure 28. March 2018 On March 28th, the highly critical Drupal security update SA-CORE-2018-002 was released. Two hours later, all our websites were updated and secure.
Drupal 8 security features: user-submitted data sanitization 27. March 2017 Recently, we had to create a security report for one of our clients about their Drupal 8 project. We described how Drupal 8 protects against most common vulnerabilities and added some project specific tests to secure as good as possible that it cannot be attacked. This resulted in a document that we thought is worth to be transferred into a series of blog posts.
Drupal 8 security features: Cross site request forgery (XSRF) 21. March 2017 Recently, we had to create a security report for one of our clients about their Drupal 8 project. We described how Drupal 8 protects against most common vulnerabilities and added some project specific tests to secure as good as possible that it cannot be attacked. This resulted in a document that we thought is worth to be transferred into a series of blog posts.
Drupal 8 security features: SQL injection 13. March 2017 Recently, we had to create a security report for one of our clients about their Drupal 8 project. We described how Drupal 8 protects against most common vulnerabilities and added some project specific tests to secure as good as possible that it cannot be attacked. This resulted in a document that we thought is worth to be transferred into a series of blog posts.
Drupal 8 security features: XSS 7. March 2017 Recently, we had to create a security report for one of our clients about their Drupal 8 project. We described how Drupal 8 protects against most common vulnerabilities and added some project specific tests to secure as good as possible that it cannot be attacked. This resulted in a document that we thought is worth to be transferred into a series of blog posts.