- Inc. Technology - http://technology.inc.com -
Rapid Response by WordPress.org Nips Hack Attack in the Bud
Posted By Minda Zetlin On June 22, 2011 @ 5:25 pm In Blogging and Social Media,Computer Security,Managing Technology,Spyware and Malware | No Comments
When WordPress.org techies noticed some suspicious “commits” (database changes) in their main repository, they didn’t dither but took immediate action. The changes were to the plugins AddThis, wpTouch and W3 Total Cache. The WordPress team promptly issued “rollbacks” (a rollback undoes a commit) and pushed the changes to users in case any had downloaded the suspicious plugins. Then, for good measure, they required password changes for WordPress users who want to commit plugins and themes, or use the forums.
If left alone, the commits might have given hackers back-door access to millions of WordPress blogs. Good work, WordPress team! Since this blog is hosted on WordPress, we’re doubly glad.
Sony, are you reading…?
Learn more from the WordPress blog [1] or at TheNextWeb [2].
Article printed from Inc. Technology: http://technology.inc.com
URL to article: http://technology.inc.com/2011/06/22/rapid-response-by-wordpress-org-nips-hack-attack-in-the-bud/
URLs in this post:
[1] blog: http://wordpress.org/news/2011/06/passwords-reset/
[2] TheNextWeb: http://thenextweb.com/dd/2011/06/22/wordpress-org-forces-password-reset-after-suspicious-plugin-activity/
Click here to print.
Copyright © 2011 Inc Technology. All rights reserved.