When Drupal 7 reaches end of life, security updates stop.
In 2017, Equifax was still using a deprecated version of Apache Struts web application framework. Hackers gained access to names, Social Security numbers, birthdates, addresses, and other sensitive information of millions of people. That vulnerability had been patched in a newer version of the Struts framework. But Equifax failed to upgrade until it was too late.
Drupal 7 NES means ongoing security scans and vulnerability fixes. If a vulnerability is found, our team of Drupal core contributors will fix, test, and release a security patch within 14 days of vulnerability discovery.
Are you bound by SLAs that mandate the use of supported software? Non-compliance can invite legal consequences, potentially leading to costly litigation. Ensure your digital operations remain within the bounds of the law.
Drupal 7 NES is fully supported, which means continued compliance with your SLA.