Well, I found a directory on my Wordpress install that I didn’t install the contents of. My wp-content/uploads/ folder had a directory /2007/12 in it, which, in itself, wouldn’t be much to raise concern, but it wasn’t “owned” by me. My web host confirmed that all files should be owned by me. I couldn’t delete the folder, it seems. I sure wanted to, because it contained 100s of html pages that were all redirects to scummy splogger sites. So, I guess that I got hacked. Folks, upgrade your Wordpress as soon as you’re advised of a security release.
When I changed my cPanel password, some wierdness occurred. If you were browsing my site this afternoon, you might have caught the moment where there was no database connection. You see, when you change your cPanel password, it changes your mail, ftp, and mySql passwords as well. It took a minute for the system to all get working again. When I was checking the mail to ensure that it still worked, I noticed that I had almost 8,000 emails sitting in my default mail account. I’ve not actually configured an email account, as I use Google’s Gmail redirect service, where I can forward mails received by corey@ to my Gmail email and send as corey@. Why not use their spam filtering, rather than manage my own? So, these were the emails that were being sent to any whatever @coreythompson dot com since October. I am sure that all of it was SPAM, so I set up squirrelmail to show 1000 mails per page and used “toggle all” and sent them to my trash folder and then purged the folder. I then set up my mail settings to bounce all email to addresses without forwarding with a “no such recipient” message. Hopefully, this will keep the unwanted emails off my server.
What a sucky happenstance.
