Monday, March 26, 2018
Drupal recently announced that it discovered a major security flaw in its system. The flaw is so critical, that Drupal decided to prepare security patches even for versions that aren't supported anymore. Being aware of the importance of this discovery, no additional information about the flaw will be available before the patches are available. They're doing that of course to prevent someone (or an organisation) from taking advantage of the flaw before people can update their website. So it will be important for each website that uses Drupal to update it as soon as the security patch will be available on March 28th.