Opened my sites to attack

  • Not too happy.

    I installed the patch for the recent vulnerability, had the silly notion I was safe (when are we ever? — understood) and almost immediately was hit with a series of attempts to breach the sites on my server as well as suspicious activity in WPTouch folders and related files. Rather than go through it all again, I removed almost all instances and disabled the others. Perhaps time to go responsive anyway.

Viewing 2 replies - 1 through 2 (of 2 total)

  • We do our best to make sure there are no security issues, but occasionally a third party notifies us of an issue and we attempt to resolve it. Unfortunately with the last issue, nobody gave us a chance to address it before it was made public, which doesn’t really help anyone. That said, the last security issue we patched only affected administrators who were logged in, so it would not have opened vulnerability for regular site visitors on your site.

    Thread Starter KS2 Problema

    (@ks2-problema)

    Thanks for your response. I’m sure the issue was far more traumatic for your shop. This, of course, highlights the vulnerabilities implicit to this form of development. Plugins extend our capabilities and reach, but come with their own tradeoffs. Good luck to you.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Opened my sites to attack’ is closed to new replies.