The system was NEVER compromised. We store our iso in a different server that where our website is. Do not worry about this.
Having said that, it is true that our wordpress was compromised (they exploited a wordpress plugin bug). We are still cleaning our website, that’s why some pages are not working at all.
But please, rest assured that our iso was never compromised.
About the ads that appeared in Cnchi. Cnchi gets its slides from our webserver, as the webserver was compromised, Cnchi showed that compromised pages… We’ve changed this in 0.15.x (development branch) and ditched the webkit component so this doesn’t happen again (cnchi will show local images only).
P.S. I didn’t write all this before because it’s not me who is doing all this cleaning work, but Dustin. We’re also in the process of getting our webserver audited by a professional company. Again, this has nothing to do with our ISO server ;)