Feeds

Hackers plant backdoor in blogging software

Stop the WordPress

Remote control for virtualized desktops

Bloging software organisation WordPress has warned that hackers posted compromised versions of its open source software after breaking into one of the servers behind its website.

Backdoor code was planted in version 2.1.1 as a result of the attack, WordPress warned on Friday.

The organisation said it has recovered from the attack but is urging users to upgrade their software to version 2.1.2, which includes "minor updates and entirely verified files", as a precaution.

Website defacements are ten a penny but attacks where hackers succeed in compromising systems are rare and far more dangerous.

In a statement, WordPress explained what it did after receiving reports its software had become contaminated with exploit code.

"It was determined that a cracker had gained user-level access to one of the servers that powers wordpress.org, and had used that access to modify the download file. We have locked down that server for further forensics, but at this time it appears that the 2.1.1 download was the only thing touched by the attack. They modified two files in WP to include code that would allow for remote PHP execution," it said.

WordPress reckons no downloads were altered except the 2.1.1 version of its code, so users running version of 2.0 of the software ought to be unaffected. Although only downloads of 2.1.1 made last week are potentially affected, WordPress has declared the entire version potentially unsafe.

"If you downloaded WordPress 2.1.1 within the past 3-4 days, your files may include a security exploit that was added by a cracker, and you should upgrade all of your files to 2.1.2 immediately," WordPress advised.

WordPress also reset passwords for a number of users because of the security flap. As a result, some users may have to reset their passwords on WordPress's forum as explained here. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?