This plugin just ate all of my bandwidth…twice!

I updated the plugin last night and right after my bandwidth went away and my site went down.
I had my sever add bandwidth and monitor it.

They just told me that the additional bandwidth went in a few minutes…80 gig!!!

Now they have told me the bandwidth was used by this plugin:
“While tracing the issue we found it to be an issue with wordpress plugin ‘simple-history’ and it was used for the attack.”

They also sent this, whatever it means:
=====================
lstat(“/home/xxx/public_html/wp-content/plugins/simple-history/dropins”, {st_mode=S_IFDIR|0755, st_size=4096, …}) = 0
lstat(“/home/xxx/public_html/wp-content/plugins/simple-history”, {st_mode=S_IFDIR|0755, st_size=4096, …}) = 0
lstat(“/home/xxx/public_html/wp-content/plugins/simple-history/dropins/SimpleHistorySidebarStats.php”, {st_mode=S_IFREG|0644, st_size=6684, …}) = 0
lstat(“/home/xxx/public_html/wp-content/plugins/simple-history/dropins”, {st_mode=S_IFDIR|0755, st_size=4096, …}) = 0
lstat(“/home/xxx/public_html/wp-content/plugins/simple-history”, {st_mode=S_IFDIR|0755, st_size=4096, …}) = 0
open(“/home/xxx/public_html/wp-content/plugins/simple-history/dropins/SimpleHistorySidebarStats.php”, O_RDONLY) = 5

So, after accepting the last update in my admin area, the plugin has eaten over 80 gig of bandwith. Talk about DOS! This now is disabled and I hope others do not have this issue…very bad…and costly!

Any ideas there?