Like I said in my last post, I haven’t been blogging for 2.5 months. When I brought up my blog today in Safari, I noticed a link to one of those really unseemly internet gambling sites (as opposed to the more above board ones that don’t have an “I’m scamming you” aura). I didn’t put this link in place, so obviously I was more than a bit concerned. Someone had to have done it, so I went in and looked at my registered user list. Using google to check the email addresses, every one of them checked out, except for one: johnsmithuswe@gmail.com. When I googled it, I found this and this. Ominous.
Long story short, this is some sort of bot that will either delete or modify your blog in adverse ways. Be sure and check for it under the email addresses listed in the articles (especially if you’re getting a lot of extra spam comments or otherwise strange things are happening) and blast it out if it’s there. WP 2.2.2 is a security update, so I’m guessing (hoping) it closes whatever holes allowed this behavior.
I’m just glad my blog didn’t get taken over by porn peddlers. I spend a lot of time trying to get my family to read this thing, and now the signature for most of my email messages contains a link here. Including email I send to my former professors. Eek.
[tags]wordpress, security, exploit, bot, spam, hack, crack, security update, update[/tags]