My blog keeps getting smacked with this stuff, crazy Russians (they call themselves the Captain Crunch security team), who then install AOL phishing sites. Somehow they upload the file (yhg.php) into my server and pretty much get access to everything.
What did I do wrong the the security front? I just noticed the update and I am upgrading. from 2.0.2 to 2.0.3. Will that be sufficient?