Coinhive said that on Monday night its DNS records maintained at Cloudflare were accessed by an unknown hacker, providing the hacker to redirect user mining traffic to a server they controlled.
Acccording to Coinhive:
“Tonight, Oct. 23th at around 22:00 GMT our account for our DNS provider (Cloudflare) has been accessed by an attacker. The DNS records for coinhive.com have been manipulated to redirect requests for the coinhive.min.js to a third party server.”
The company said that no user account data was leaked and that the website and the database servers were uncompromised.