Threat Group Cards: A Threat Actor Encyclopedia
Archived: 2026-04-05 22:28:50 UTC
Home > List all groups > List all tools > List all groups using tool Drupalgeddon
 Tool: Drupalgeddon
Names Drupalgeddon
Category Exploits
Type 0-day
Description
(Malwarebytes) Drupal is one of the most popular Content Management Systems (CMS),
along with WordPress and Joomla. In late March 2018, Drupal was affected by a major
remote code execution vulnerability (CVE-2018-7600) followed by yet another (CVE-2018-7602) almost a month later, both aptly nicknamed Drupalgeddon 2 and
Drupalgeddon 3.
Information
AlienVault OTX Last change to this tool card: 20 April 2020
Download this tool card in JSON format
All groups using tool Drupalgeddon
Changed Name Country Observed
APT groups
 Sea Turtle 2017-2021
1 group listed (1 APT, 0 other, 0 unknown)
Source: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=13efaf2c-994f-464a-9fcc-faa42bcaa154
https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=13efaf2c-994f-464a-9fcc-faa42bcaa154
Page 1 of 1