Spread Firefox has been hacked again! The website, which is the Mozilla Foundation’s community marketing site, has been hacked for the second time in less than three months. A quick trip to the URL yields the following legend:
Welcome to SpreadFirefox, the official Mozilla site for Spreading Firefox, a modern Internet browser delivering a safer, faster, and better web experience. If you are looking for Firefox, please visit http://www.getfirefox.com, the site for all things Firefox, including the download of its latest version.
SpreadFirefox is currently unavailable. We currently plan to make SpreadFirefox available again around October 15th. Keep checking in because it might be up before expected. We apologize for any inconvenience during this time. We assure you that we do this to provide you with the best service possible. For updates on what is happening, please visit MozillaZine (http://www.mozillazine.org). This shouldn’t stop you from Spreading Firefox to the masses, so keep up the good work!
– The SFX Administration Team
In this latest attack, bad guys remotely exploited a vulnerability in the TWiki wiki software, which had been installed on the box serving the site, but not actually used by the public website. Earlier in July, spammers exploited a flaw in the Drupal content management software used to run the site. Are more attacks on their way?