phpBB – Malware versions available at official download links

Unknown attackers have on Friday for three hours the download links for the forum software phpBB on the official website under their control. Those who clicked downloaded malicious versions of the current phpBB version 3.2.2 or the upgrade from 3.2.1 to 3.2.2.

It is estimated that around 500 users clicked on the compromised links during this period. Meanwhile, the links are under control again, the developers assure. Those who downloaded the software last Friday should check the SHA256 value.

How the hackers got the links under their control is currently unknown. The responsible persons write only that the access over a third party side succeeded. They claim that neither the original software nor their servers have been successfully attacked. The contaminated versions should contain malicious code that should load JavaScript from an external source. The developers say that they have control over the domains with the JavaScript and have mitigated the threat. What the malicious code does in the end is not known at this time.