The Make-A-Wish website was recently infected with a cryptocurrency mining malware called CoinImp which was hosted by "drupalupdates.tk." Cybercriminals obfuscate malware with various methods that make blacklist solutions obsolete. Trustwave says the injected script was removed. Trustwave SWG...
It seems as though a lot of sites that are using outdated Drupal installations are being cryptojacked, which means of course those site's infrastructure is now being used to mine cryptocurrency without their knowledge. Bad Packets has an explanation of the hack and a list of sites that have...