Never EVER visit or post on hechtmail again...

Since the admin of hechtmail.com cares not a bit about the security of this site (and therefore it's visitors), it is imperative that no one visit or post on hechtmail.com again. Note that I am sacrificing everything for you people by posting this warning!

"In a year filled with horrible security blunders we may have a winner for worst of the year with eight weeks still to go.

We knew two weeks ago when the Drupal team disclosed a really, really bad SQL injection vulnerability in Drupal 7 that it was important for admins to update quickly. We didn't know quite how quickly.

It turns out that "[a]utomated attacks began compromising Drupal 7 websites that were not patched or updated to Drupal 7.32 within hours of the announcement..." of the attack, according to the team. They put it in the most dire terms: "You should proceed under the assumption that every Drupal 7 website was compromised unless updated or patched before Oct 15th, 11pm UTC, that is 7 hours after the announcement."

That's a lot of sites, potentially millions. Drupal claims a million users on project site drupal.org and over 30,000 developers. Many prominent sites, including the whitehouse.gov, use Drupal."

Here is but one of the many testimonials...

"Most of my Drupal 7 sites were compromised...

I manage six different Drupal 7 sites and was traveling when the notice went out. They were all patched Oct 16 (too late), and then on Oct 23, four of the sites started spewing spam. Initially I looked, found and removed compromised files and MySQL entries which stopped the SPAM, but two days later it started up again.

Those four sites were then restored from backup and appear fine now. Unfortunately, I'm still waiting for Senderbase to forgive me.

Site #5 had a couple PHP infections but has remained quiet and Site #6 shows no evidence of being compromised.

I would take issue that there's been no discussion at Drupal - This thread has probably been the biggest - https://www.drupal.org/node/2357241#comment-9272825"

YOU HAVE BEEN WARNED.

And, oh yeah, thanks a lot, HP!

What is going on? I have no

What is going on?

I have no clue what you are talking about

Wait...it took until

Wait...it took until 10/31/2014 for you to hate Drupal?

It's a good thing that I warned everyone to never EVER visit or post here again!

I now hate drupal. Thanks

I now hate drupal. Thanks ROB!

hechtmail uses drupal 6.

hechtmail uses drupal 6. Sorry for any hassle you may have had.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.