This week there were several scares from hacking attacks on WordPress sites or plugins.
One of these was a well known and much used plugin, Social Media Widget which had some code put into it by someone who was working on it (accidentally or on purpose, we don’t know.) The code injected links to a spammy PayDay site that you would not have seen, but Google could have black-listed you for.
This was re-mediated fairly quickly and sites could continue to use this plugin after updating it which removed the injected link code.
The second problem was a bigger issue, a brute force attack by bots [Read more...]