Hackers break into WordPress servers Picture 1 The break-in occurred from last weekend and was discovered later, WordPress founder, Matt Mullenweg, for the announcement on the official website of WordPress. The affected version is WordPress 2.1.1, installed with a tool that allows an attacker to access the server running the blog software.
The WordPress development team is notified of the breach on its own secure e-mail system. After investigation, this group concluded that someone had modified two files in WordPress 2.1.1 to allow remote PHP code execution.
The affected WordPress software web server has been disconnected from the network for full testing. This is the first time WordPress has been attacked in this way. Users are recommended to upgrade to WordPress 2.1.2 to remove the above exploitation form.