Maybe it’s time to rethink your CMS.
If you manage one of the million websites affected by Drupalgeddon 2, the “highly critical” Drupal security breach discovered last week, it may be time to rethink your web content management system (CMS).
According to a Tech Crunch article, open source CMS users have been warned that without an immediate update to correct a missing input validation, their sites are highly vulnerable to hackers. Exposed information includes usernames, email addresses, country information, hashed passwords—and the list could grow.
Drupalgeddon 2 is just the latest in a long list of attacks on open source CMS platforms, which are easy targets for hackers in large part because users are not always current with updates, leading to increased security vulnerabilities. Adding to the list, WordPress was hit with yet another breach that affected 1.5 million pages in 2017. And a recent Joomla security breach allowed hackers to register and then grant administrative privileges to newly registered accounts, giving hackers unfettered access to websites.
Unless your institution is constantly making updates to your CMS, you are at risk and it might be time to rethink your CMS. Start with these questions:
- Does your college or university have dedicated resources to invest in mitigating risks and overseeing continual maintenance of your CMS?
- Can you afford website downtime when your system is hacked?
- Do you have a dedicated web team that can keep up with and follow best practices to ensure your CMS is secure?
Regardless of whether your institution has been affected, do you really want to chance it when it comes to massive cyberattacks on open source that have become the norm? OmniUpdate customers are never affected by scares like Drupalgeddon 2 because our OU Campus CMS provides automatic security updates and ongoing support from experienced technologists.
If you’re ready to reduce the headaches that come from continually worrying about the security of your CMS, download our white paper: Four Questions You Should Ask Before Considering an Open Source CMS.