Skip to main content

The Cheeky Monkey Media Blog

A few words from the apes, monkeys, and various primates that make up the Cheeky Monkey Super Squad.

The State of Drupal Security

It’s a well known fact that monkeys love to chatter. Lately, all the chatter has been about the state of Drupal security. It was widely reported last week that nearly one million Drupal account holders had their passwords, email addresses and user names accessed by an unknown hacker. Many people have used this opportunity to question the security of Drupal as a content management system. According to an article by InfoSecurity Magazine, “the breach was not the result of a vulnerability within Drupal itself.”

So, what exactly happened? According to, “hackers were able to get into the system via a known vulnerability inside third-party software that was installed on the server infrastructure.” While the exact nature of this software is not being made known, it does show the attack to be one against an organization and its account users, not an organization and its product users. This is an important distinction for any site owner concerned about the security of their own Drupal site.

As a CMS, Drupal features many high-level security measures including:

  • Security features built into the site itself
  • Regular patches and security upgrades
  • Strenuous testing of all new modules prior to release
  • Smaller core code (as compared to other open source CMS systems), leaving less vulnerability
  • Track record of extremely low reported vulnerabilities (as compared to other open source CMS systems)

Website security is a major issue, and one of the main reasons that many people end up selecting Drupal in the WordPress vs Drupal debate. While last week’s security breach of the account system is an unfortunate development, it is no reason to believe that your Drupal site is in any trouble of similar vulnerabilities.

If you’re looking for more information about Drupal security, swing on over to for a fully detailed whitepaper on the topic.

Web Development

Would you like to know more about what we do?

View Our Services

Graphic Design Cheeky Monkey

Have a look at some our client work

View Our Work

Cheeky Monkey Discovery

Learn more about Cheeky Monkey Media

About Us