The Ashes

Those who are running on an old version of open source blog platform WordPress may be susceptible to a worm attack.  Currently WordPress powers over 5.3 million blog websites.  Twitter power user and blogger Robert Scoble was hit hard by the worm attack.

“A few weeks ago some hackers broke into my blog here (this was before 2.8.4 was released). At first I thought they just left some porn sites in a couple of blog entries. So we upgraded WordPress (I was on 2.7x back then). Deleted a fake admin account. Deleted the porn sites. And thought we had solved the problem. We didn’t,” stated Scoble on his blog.  “They broke back in, but this time they did a lot more damage. They deleted about two months of my blog. Yes, I didn’t have a backup. I should learn to do backups (we’re doing them now). Life has a way of beating you if you don’t have backups.”

If you notice something fishy about a new account that was created called Administrator (2) or have a strange addition to your permalinks, then it is likely that your account was hacked into. One of the best ways to avoid getting hacked is by upgrading to the newest version of WordPress which has security patches.