Log_visits - TrojWare.JS.Iframe.of@396209225

I’ve just discovered an trojan in my piwik_log_visits sql table, detected by scanning the daily sqldump backup


How did it get there? and what can I do to stop future trojans?

The only hit on google was this forum, posted just a few hours ago:

Is this something all new? targeting Piwik among others?
Is it safe to use the Piwik dashboard until an fix is ready? I’m running 2.16.2 (self-hosted, latest stable)

Can you please email more info (as much info as you can) to security@piwik.org ? we are not aware of any attack or security issue in Piwik but our security team will investigate