Joomla servers hacked
Joomla has issued a statement revealing that its servers were hacked and subsequent to the breach, a cryptocurrencies mining script was installed on some of them. Joomla added that, after investigation, it believes the breach could have been prevented.
Joomla is one of the world's top three most used Content Management Systems, with the most popular one being WordPress, that have become popular by making it easier for non software developers to build and manage websites. Given their popularity, they also tend to become a target for hackers and security researchers alike looking for security vulnerabilities.
"At approximately 09:30 UTC on 15 May 2019, a security researcher notified the Joomla Security Strike Team (JSST) that they had discovered an internal Jenkins CI server used by the JED to deploy updates to their live and staging websites and were able to exploit CVE-2018-1000861 on the server, providing a screenshot of a sensitive file as proof of the exploit. Upon notification, JSST members worked with JED team members to bring the affected Jenkins system offline and conduct an analysis of whether this server had been compromised in other ways."