All,
The Catalyst websites were hit by the malware that deathshadow mentioned (
http://arstechnica.com/security/2016/02/mysterious-spike-in-wordpress-hacks-silently-delivers-ransomware-to-visitors/), infecting various WordPress sites, roughly 2 weeks ago.
We have taken several steps to rectify the situation since then.
The malware was actually cleaned within a day or two from the server. Unfortunately, it's taken longer for us to find all of the places it was "cached". Notably, we cache parts of the website (for performance reasons), and serve the website from CDNs. Both of these places had parts of the malware cached until late last week.
All of those places now have no traces of the malware left.
The "Safe Browsing" prompts you're seeing from Google and Firefox come from analysis Google does. We've had to submit requests for review to Google several times to get the sites taken off their list. At this point, all of the main Catalyst properties are looking "green", and we continue to monitor the situation.
From this thread, you've pointed out one additional property that is showing "red", d15yciz5bluc83.cloudfront.net. This is one of the CDNs we use to host content, such as avatars. I wasn't aware it was flagged until now -- I've recently submitted it to get reviewed as well, so hopefully it will turn "green" soon.
Thanks for your patience. We've been working behind the scenes to rectify this situation.