Hundreds of unpatched Drupal sites have been infected with Malware that secretly mines cryptocurrency. Sneaky.
The Malware was planted on servers by embedding code that could mine Monero. This meant that CPU processing power of site visitors’ computers, phones and tablets could be tapped into. And voilà – free processing power.
Dubbed Drupalgeddon 2.0, the Malware affects versions 6,7 and 8 of Drupal CMS. Nearly 400 sites including US government depts, universities and the Chinese tech company Lenovo have been affected so far.
There are apparently over 50,000 websites running crypto-jacking campaigns without their knowledge. The code causes site visitors’ computers to pull 80% CPU resources into mining Monero.
You’d only know that your computer was being used to mine cryptocurrency if you noticed high CPU usage. So, remember to always keep your CMS up-to-date and patched.
[More tips on keeping the sneaks at bay here]