I have to believe that everyone else has noticed that the variety of compromised platforms that bear this "hackers" signature, would seem to imply that WordPress is not a singular target. I will admit that 2.8.4 not being secure is probably going to be a given at some future point. Someone will find something, once again... to exploit. I guess that's just how the game is played... but I'm not yet ready to come to the conclusion that WordPress itself is the responsible entry point on this one. All I'm saying, (at the risk of driving any other gender-insecure individuals to express their obvious omnipotence) is that it would be nice to see a common lowest denominator on this one. Shared environments? Malware based ftp compromise? Specific server configuration issues? This would seem to be a growing vBulletin issue as well. Does anyone know if a honeypot of some sort is possible on sites that have been repeatedly abused?