As circulated via the EGI broadcast tool on the 4th March 2021, we have been made aware of a compromise on the WordPress instance supporting the frontend of the UMD infrastructure.
From what is known at the moment, someone gained access to a test user account with limited capabilities, in particular, this account could be used to create WordPress posts.
There is no evidence of any further compromise, particularly of the UMD, CMD, and AppDB repositories which were linked from the web page and which had a degraded availability during the investigations. These findings were circulated in another broadcast sent on 5th March 2021.
Following the compromise, the repositories were brought down and were unavailable for 2 days. The repositories have been rebuilt from scratch, using signed packages stored on a backend host which wasn’t compromised. The repositories are now hosted on resources at the new provider that was selected in 2020 as part of the bidding activities for the preparation of EGI-ACE.
Currently, the WordPress frontend is still down and will be replaced later.
This page will be updated according to the evolution of the situation.
We apologise for any inconvenience that this may cause.