Drupal Tells Users to Assume Drupal 7 Websites are Compromised

Content management system Drupal told users on Wednesday that unless they updated their Drupal 7 sites within seven hours of the SQL injection announcement last week, they “should proceed under the assumption that every Drupal 7 website was compromised.”