There was a known issue as this prompted the release of 1.5.2
Hopefully they did no other damage ?
No, just this one post, thankfully… still a bit of a violation though
Were you running 1.5.2 at the time? I thought that release was for supposed to prevent that?
Yes, I was running 1.5.2 at the time
Are you sure they didn’t just guess your admin password?
Do you have any web server logs to help verify the claim ?
The original post said 1.5.1.3 ?
I’m concerned about their kudos to irvirus.com. “IR” — there was a 150GB MPEG file placed in a “.cron” folder on my web design site and there were many references to “iroffer” in it. Wonder if it’s the same bunch? Some on this board surmised my host may have been “rooted.” Might that have happened to you? In that case, WP is not to blame, but your host’s lack of adequate security. Search for “iroffer” to see the entire thread on that topic.
Skippy, I change my password on a semi-regular basis
podz, the original post always said 1.5.2