jQuery's spider web log website (blog.jquery.com) runs on WordPress—the world's most pop content administration scheme (CMS) used yesteryear millions of websites.
While at that spot is no show even too thus if the server (code.jquery.com) that host jQuery file was also compromised, The Hacker News took a screenshot (as shown above) too tin forcefulness out confirm that the hackers only published a uncomplicated spider web log post to deface the website.
The defaced spider web log post URL — https://infohacknews.blogspot.com//search?q=26/hacked/ (now removed).
Since the above-mentioned spider web log post was published nether the call of Leah Silber, a heart too mortal fellow member of jQuery team, it seems hackers were able to brand their post alive yesteryear compromising Silber's account—probably yesteryear reusing her password leaked inwards a previous information breach.
If not, the hackers powerfulness convey gained unauthorized access to the website either yesteryear exploiting a (known or zero-day) vulnerability inwards Wordpress script or the server.
jQuery squad has at nowadays removed the post created yesteryear the hackers every bit shortly every bit they realized at that spot was a compromise, but too thus far the scheme has non released whatever official tilt nearly the incident.
This is non the rootage fourth dimension when jQuery's website has been compromised. In 2014, the primary domain (jQuery.com) was reportedly compromised, redirecting the site's visitors to a page hosting an exploit kit.
Since millions of websites lead purpose jQuery script hosted yesteryear jQuery server, today's assault could hold upwards worse if the hackers would convey been able to compromised code.jquery.com inwards an endeavor to supervene upon the official jQuery file amongst the malicious one, putting billions of visitors of millions of websites at adventure of malware attacks.
Influenza A virus subtype H5N1 like incident took house yesterday, when a hacker managed to supervene upon official JavaScript file hosted yesteryear Coinhive—a pop browser-based cryptocurrency miner—with a modified version that eventually tricked CPUs of millions of visitors of thousands of websites to mine cryptocurrencies for the hacker unknowingly.
Interestingly, Coinhive was also hacked via password reuse attack, allowing the assaulter to gain its CloudFlare trouble organisation human relationship too modify DNS settings unauthorizedly.
We'll update y'all amongst to a greater extent than information on the incident. Stay tuned!
Share This :
comment 0 Comments
more_vert