A year after patch, Drupalgeddon2 is still being employed in cybercriminal attacks

The remote code execution bug is being used in attacks against high-profile websites.