Just threw up a Joomla 1.5 site straight off the tutorials. Now I patched it up like they said, and actuallyforgot about it for a month. Last month I noticed it had been completely defaced by some Russian hacker. Well since I am not using it and have plenty of other things to keep me busy I forgot about it again. This week I saw the hacker just crashed the entire site and deleted entire folders. Here's my point. at the same time I was curious how all the CMS would fare, so I also set up a Drupal site (out of the box) with the patches. The Drupal site is sitting there untouched www.ckcunion.com And if you think they ar enot bold, check out a hacked network security site: www.securetechinternational.com -- it seems we are all in the firing line. Conclusion: Joomla seems to be the CMS of choice for hackers. Does anyone have a opinion on which is more secure? How much of a role do you think the server security plays in it? Now I take an interest in it and I have seen Xoops, Joomla sites hacked a lot., But I am yet to see a Drupal site defaced. Does anyone have an opinion on which CMS is more secure or easier to secure?