I got hacked and don't know how. I had the latest version at the time (2.6) Since then, I upgraded 2.6.1 but still afraid the exploit might start again
The results is this:
- many wordpress files deleted including "wp-admin",
- index.php deleted
- wp-config.php deleted
- the database seems not to have been compromised.
all the remaining files in the directory are clearly displayed.
you can see a similar hack on google, see which similar files have been deleted:
If someone has reported same issues, please share with me. I could not find through my logs what happened.
I suspect a plugins issue... or strangely "wpau-backup" seems to be present at each hack. i noticed somehow that people which haven't cleared their wpau-backup directory have a copy of all their files directly accessible which give a clue to installed plugins or might open a security breach.