Hackers Hijack JDownloader Site to Deliver Malware Through Installers

JDownloader's official website was compromised via an unpatched CMS vulnerability that allowed attackers to modify access control lists and change download URLs, resulting in malicious Windows and Linux installers being served for a short period in early May; the site was restored after patching and hardening, and developers recommend full OS reinstalls for users who executed the altered installers.