Hackers spread credentials for thousands of FTP sites, New York Times among those. Hackers get credentials for more than 7,000 FTP sites and circulated a list in underground forums, according to a security expert Alex Holden, chief information security officer for Hold Security, a Wisconsin-based company that monitors cyberattacks.
Hackers used the credentials for access to the some FTP servers and upload malicious files, including scripts in the programming language PHP. In other cases , they put the files on FTP servers , which include malicious links directing people to malicious web sites.