Unknown attackers have on Friday for three hours the download links for the forum software phpBB on the official website under their control. Those who clicked downloaded malicious versions of the current phpBB version 3.2.2 or the upgrade from 3.2.1 to 3.2.2.
It is estimated that around 500 users clicked on the compromised links during this period. Meanwhile, the links are under control again, the developers assure. Those who downloaded the software last Friday should check the SHA256 value.