A site belonging to the Savannah GNU free software archive was attacked recently. The compromise was the result of a SQL injection attack against the savannah.gn.org site. The site is a part of the Free Software Foundation and is used as a hosting platform for free software projects, specifically GNU-based projects. The group has finished the process of restoring all of the data from a clean backup and bringing up access to some resources, but is still in the middle of adjusting its security settings. There have been other attacks against free and open-source software projects in recent years.
Source: https://threatpost.com/savannah-gnu-site-compromised-113010/74718/

