Posted by: Dan O'Connor
A Korean mirror has been serving a backdoor’d version of phpMyAdmin since at least the 22nd of September.
And for Metasploit.
It is a very clever backdoor, I am sure it took a lot of planning and execution to get it into the tree. It appears that only about four hundred copies were downloaded and the mirror is currently offline.