posted July 1st, 2008
A few releases of WordPress back—the platform this blog uses—had a rather egregious security hole.
In some cases, when a blog would be hacked, it would be immediately obvious. In others, they would store your password or inject code that could let them get back in later—even after WordPress had fixed the original hole.
I just found out that The Emperor Has New Clothes is in the latter group. So if you get strange pop-ups or redirects, I’m really sorry. I now need to go figure out how to fix this.
UPDATE: Fixed. I still now need to go and reinstall all of my plug-ins. Literally 7/8ths of my RSS subscribers stopped subscribing (or got redirected to spammy-spam-spam-a-lot before Wordpress tracked them as a hit). Let’s hope this doesn’t financially cripple me too much.
July 13th, 2008 at 9:47 pm
Ouch. Wordpress is insecure as hell though.