Note: The hack was on a stand-alone commercial third party application, paFileDB
we were using to distribute the PostNuke software and not on the PostNuke site.
We discovered last night that http://downloads.postnuke.com was the target of a
malicious attack and files in the ZIP archive of PostNuke .750 were changed.
Immediately upon discovering this all links to the downloads section were
removed and on Tuesday the 26th at 8:30 GMT the original download package was
restored. Our investigations so far have revealed the attack was initiated on
Sunday, 24.Oct, at 23:50 (11:50 PM) GMT. The attacker used an exploit in the
download management software pafiledb to change the download address of
PostNuke-0.750.zip to point to a compromised archive. We must stress this is a
security compromise of paFileDB and has nothing to do with the PostNuke
application. Note, if you downloaded the tar.gz archive you are not affected so
you do nothing, only those who downloaded the zip version were affected and must
take immediate action as detailed below.