Hackers have been stealing CPU-cycles from visitors to the Make-A-Wish Foundation s international website in order to mine for Monero cryptocurrency. Researchers said they found the CoinIMP mining script embedded in the non-profit’s website and that it was taking advantage of the Drupalgeddon 2 vulnerability in the organization’s website to launch a cryptojacking attack. As of June, more than 115,000 sites were still vulnerable, according to security researcher Simon Kenin.
Source: https://threatpost.com/cryptojacking-attack-targets-make-a-wish-foundation-website/139194/