As soon as the problem was discovered, the changes were rolled back and new clean versions were released.
If you use any of those three plugins, update to the latest versions and you’ll be fine.
Hello,
Is there a hash or better some pgp signed archive from W3-Edge whe can trust?
A new update on the W3-Edge website and clarification about the issue here would be welcome.
Regards,
Deactivating until there is an official announcement from plugins developer(s) on w3-edge.com
Maybe W3 Edge don’t care after all.
Frederick is a really busy person who doesn’t have time to monitor this board all the time. You can ask him questions on twitter @w3edge
Thnaks kfawcett, I tweeted Frederick and he responded. I also found a bunch more info to help.
Found out the letter from Bluehost regarding W3 Total Cache compromise was a generic message, but the wording made me think they detected something on my site.
I read the great background article and I ran the scan recommended here:
http://blog.sucuri.net/2011/06/wordpress-plugins-hacked-understanding-the-backdoor.html
W3 said if I’m on the latest version then I’m fine. My scan came up clean so that’s good too.