I'm having some security issues, and I'm wondering if they could possibly be tied to this plugin?
I really, truly, do not want to start any rumors. So don't take my word that there's a problem. I could be wrong. I'm just trying to find out if there is any validity to my worries and possibly warn others if there are.
Now that the disclaimer is out of the way, here's what happened:
I had EZPZ OCB (among other plugins) on several of my sites that got hacked (they redirect to a .ru website with malware). I had to shut down/reinstall/redo *all* of my websites because the backups from this plugin didn't work - none of them.
My understanding was the hack happened because of a security breach with one of the versions of WP, then they released the update, etc.
Anyway, several tears later...
I had a fresh install of WP and BP on this site I've been working on, and I've spent the last few weeks setting it up, tweaking things. You know the drill. Hours upon hours upon hours of work. (I was *just* about to launch this to my local community and was doing some final optimization.)
Here's the thing.
I installed this plugin again after trying out another one that seemed to slow down my site too much per P3 (Plugin Performance Profiler). I activated it and ran the manual backup. It sat there for several minutes (I watched the timer), but nothing happened.
Ran P3 again, site was actually a little bit slower, and this was the biggest cause (as was the other, now deactivated plugin). I decided to test out my website for myself to see if it felt slow to me.
When I went to my homepage, it reloaded very slowly and basically with no theme. This is exactly what happened to me when I got hacked before. So I knew.
I ran a Sucuri Site Check (http://sitecheck.sucuri.net/scanner/). It scanned a cache of the website from 2 days ago... clean. When I deleted the cache files from my site and rescanned, it came up as infected.
There are only a couple of plugins I have been playing with in those past two days, and this is one of them. I have shared hosting, and now two other sites, which were also clean installs, are infected as well.
It might not have anything to do with this plugin. I honestly don't know enough to be sure.
But I find it odd that this happened as *soon* as I used it. And it is a common thread (along with a few other plugins) that runs through my other hacked websites.
Opinions? Any thoughts would be appreciated.
I would also be eternally grateful for any security plugin recommendations, as the one I had clearly didn't work (or I used it incorrectly, which is always possible).
Thanks in advance for your help.