Drupal: Critical SQL injection flaw now targeted in attacks

A highly critical SQL injection vulnerability in Drupal is being exploited by hackers, affecting users of the content management system. The vulnerability, which was announced earlier this week, allows attackers to inject malicious SQL code. This can lead to unauthorized access, data theft, and other security issues.

1. The vulnerability is a SQL injection flaw in Drupal, which was announced earlier this week.
2. The flaw affects users of Drupal 8 and 9, and is highly exploitable.
3. Attackers are attempting to exploit the vulnerability through targeted attacks, likely using custom tools or scripts.
4. Detection of this vulnerability can be done by monitoring for suspicious database queries or unusual system activity.

T1068: Exploit Public-Facing Application

Drupal 8 and 9 versions, suspicious database queries, custom tools or scripts

Apply the latest patch for Drupal 8 and 9 to mitigate this vulnerability. Additionally, monitor system activity and database queries for suspicious behavior.