An unknown attacker has hijacked Coinhive’s DNS server and replaced it with a malicious version that mined Monero for the hacker’s own wallet. The incident took place yesterday, October 23, at around 22:00 GMT, and was discovered and resolved a day later. The company blamed the incident on an “insecure password for our Cloudflare account that was probably leaked with the Kickstarter data breach back in 2014
Source: