Hackers got access to the U.S. National Vulnerability Database (NVD), which is operated by The National Institute of Standards and Technology (NIST). The database was unavailable since March 8th after NIST discovered the malware on its two web-servers.
Security researcher Kim Halavakoski published a message he received from the NIST administration.
“On Friday March 8, a NIST firewall detected suspicious activity and took steps to block unusual traffic from reaching the Internet. NIST began investigating the cause of the unusual activity and the servers were taken offline. Malware was discovered on two NIST Web servers and was then traced to a software vulnerability.” – stated NIST.
Members of the Institute are working hard to restore the NVD as quickly as possible but the exact date is still unknown.