Hackers gain root access to WordPress servers.

Published on April 15, 2011 By ShadowWar In Internet

Hackers have compromised several servers that support WordPress and may have obtained source code, according to the founding developer of Automattic, the company behind the popular blogging platform. He wrote on the WordPress blog that Automattic has been reviewing log records to determine how much information was exposed and re-evaluating "avenues to gain access." "We presume our source code was exposed and copied," he wrote. "While much of our code is open source, there are sensitive bits of our and our partners’ code. Beyond that, however, it appears information disclosed was limited." He wrote the company had no specific advice for WordPress users besides using strong passwords, and not using the same password for multiple sites. In the comment section of the blog post, a user asked if WordPress stores passwords in plain text or stores hashes of passwords. The founding developer wrote WordPress uses the Portable PHP password hashing framework. Source:

Comments

Dr Guy

on Apr 15, 2011

This is the second time in 6 months that WordPress has been compromised. One of our web sites was among the victims last fall when they gained root access to some servers.

Welcome Guest! Please take the time to register with us.
There are many great features available to you once you register, including:

Richer content, access to many features that are disabled for guests like commenting on the forums.
Access to a great community, with a massive database of many, many areas of interest.
Access to contests & subscription offers like exclusive emails.
It's simple, and FREE!