WordPress Hack Attack
Today a hacker gained access to one of the sites on this server (bradj.co.uk) and uploaded various payloads with scripts to do targeted attacks on other WordPress sites. Highly informative how the scripting was done.
I am sorry if you were the target of one of those attacks. Rest assured, when I found out where the attack was coming from I shut down the site concerned. I have changed all passwords and access to this site...
I thought at first someone had got round things after I upgraded the database software, but after visiting the log files over a couple of months, I realised it was simply someone guessing the password for an administrative user on the site concerned.
I identified the servers where the attack came from and the relevant authorities have been informed - but since when do large web service companies take notice of small fry like us! Access from that server and the servers hosting the external scripts have been blocked with appropriate firewall rules :)
* Stressful Thursday *
-DJ