Browse: Home / godaddy
WPWeekly Episode 99 – Recap Of WordCamp San Francisco

WPWeekly Episode 99 – Recap Of WordCamp San Francisco

By Jeffro on May 8, 2010

wordpressweekly1I think this is the first episode of WordPress Weekly ever that I flew solo the entire episode. That’s why it was so short today. I’m not use to flying solo so bare with the mumbling I did that makes up most of the episode. I talked about some of the tibits I picked up from Matts keynote at WordCamp San Francisco, my efforts to monetize, my review of the limit logins plugin and a couple of other things. Hoping that after vacation and such, I can implement a few changes I have planned for the show. Long needed changes by the way.

Ad Copy:

This episode could have been sponsored by you. If you own a commercial plugin or theme that is GPL compatible or a service built around WordPress and are interested in advertising it, check out the advertising information page.

Stories Discussed:

Review Of The Limit Login Attempts Plugin
Interesting Tidbits From The Keynote
GoDaddy Hacks Due To Old Software – Bad Passwords
Jason Schuller Did It – I Can Do It To

WPWeekly Meta:

Next Episode: Saturday, May 29th 2P.M. EST

Subscribe To WPWeekly Via Itunes: Click here to subscribe

Length Of Episode: 29 Minutes

Download The Show: WordPressWeeklyEpisode99.mp3

Listen To Episode #99:

Posted in | Tagged , , , , , | 2 Responses

GoDaddy Hacks Due To Old Software – Bad Passwords

GoDaddy Hacks Due To Old Software – Bad Passwords

By Jeffro on May 5, 2010

Over the weekend, numerous users on GoDaddy shared webhosting accounts reported that their sites had been hacked with injected malware. Neowin.net was able to get a hold of GoDaddy’s security expert Todd Redfoot who explained what happened:

GoDaddy reassures customers that the attack was via WordPress and not an attack on the GoDaddy servers themselves. The coordinated attack on WordPress was formed in a botnet-like attack, which targeted outdated versions of WordPress, however, the exploit was not found in version 2.9.2. In some instances, users not running WordPress were also hacked, but did have an active or inactive WordPress installation on their account. In as many cases, users were unaware that an installation of WordPress was present on their account.

So in this instance, GoDaddy was not specifically attacked but sites using WordPress on their servers were. This is another lesson that upgrading ASAP to lessen the chance of these types of exploits affecting your site is imperative in maintaining a healthy website.

On a related note, a couple of the U.S. Department Of Treasury websites have been hacked as well. These sites are located within the Network Solutions hosting system which explains the compromise. According to NetSol:

This past weekend, an application that we support on our hosting platform was exploited as we were in the process of fixing it. We believe we have fixed the issue and we were able to contain the number of potentially affected websites to less than 250.

Discussion regarding the hacks affecting the various webhosting companies is ongoing in the following WPTavern forum thread.

Posted in | Tagged , , , | 6 Responses