Hackers broke into the website of one of the world’s largest international charity Fund Make-A-Wish Foundation, helping to grant wishes to terminally ill children, and have posted a script to cryptogamia (hidden mining cryptocurrency).
According to the report, the company Trustwave, which specializiruetsya on cybersecurity, hackers were implemented on a web site Make-A-Wish CoinImp miner that uses the computing power of visitors to the page for mining cryptocurrency.
It is reported that CoinImp uses various tricks in order not to be detected, for example, constantly changes the IP address pools and devices for mining cryptocurrency.
The website Make-to-Wish is based on a popular content management system open source Drupal. Earlier this year, Drupal has announced that it has identified a vulnerability in its software that allowed hackers to download malicious code to the websites of the management system. Drupal has recorded more then 100 000 infected sites.
Researchers at Trustwave believe that a web site Make-A-Wish may be compromised due to the same vulnerability. It is reported that currently the Fund has removed the malicious script from your resource.
.