The Drupal open-source group reset passwords after detecting unauthorized access to account information. The warning applies to users with data stored on Drupal.org and groups.drupal.org. Information exposed includes user names, email addresses, country information, and hashed passwords. The group also recommended users change their login details on other sites where they use similar passwords. They also told members to be cautious if they receive spam asking for personal details. The software allows people to organize, manage and publish their content.”]
Source: https://www.bitdefender.com/blog/hotforsecurity/drupal-resets-passwords-after-unauthorized-access/