SoylentNews

An Anonymous Coward writes:

https://www.msn.com/en-us/finance/technology/hello-kitty-malware-targets-drupal-to-mine-for-cryptocurrency/ar-AAwGn4C [msn.com]

According to researchers from Imperva's Incapsula, Kitty is the latest malware to attack the Drupal content management system (CMS) for the purpose of cryptojacking.

It has been just over a month since the Drupalgeddon 2.0 (CVE-2018-7600) exploit was published. The vulnerability, deemed "highly critical," is a remote code execution bug present in Drupal versions 7.x and 8.x.

What makes Kitty different is that it is not only the internal network, server, and website itself which may be compromised to mine cryptocurrency, but the malware also targets visitors to compromised domains.

Original Submission