Wordpress and TOS reminder

[mghq]

Never said you were evil, but we do have to suspend all accounts for 90 days as these were reported by paypal/ebay inc and they submitted it to the FBI. The FBI has any right to get info of and from the owners of hacked sites

[Venom]

*chokes* *chokes again* 90 DAYS!!! Its not like I would of like this to have happened..
If I knew there were venerabilities in Wordpress of this magnitude I would of certainly updated with a fervor not unlike someone on fire... (I thought it was cute...)
AND I don't remember knowing there was a wordpress update..
I just updated it for petes sake..

[mghq]

What version were you using. I might be able to unsuspend sooner but the abuse department of my DC is gone for Labor Day weekend so can not respond to my tickets.

[Venom]

It was the latest version like maybe 3-4 weeks ago?
and .tk has taken my domains the rotten little...

[mghq]

Was it 3.0 or 3.0.1

And I assume they were alerted of the hack and took the domain back so they could keep there rep up

[Venom]

yeah I know I figured as much they put there liability statement up..
I think it was 3.0 it may have been 3.0.1 but I know it was no lower then 3.0

[mghq]

Well my 3.0.1 blog has not been hacked and has like two plugins so i cant really narrow it down much other than plugins or version

[Venom]

well I haven't received any update notices or anything.. so it may have been 3.0.1 I'm not sure..
but I have several plug-ins and a theme or two I'm not currently using so it may have been that as farther up someone referred to(you I believe)

[mghq]

Yea, I am a little confused as how this hack is taking place, I know they manage to get a file called wp-add.php which is a c99 shell uploaded and then it all goes down hill for that client from there

[Venom]

why don't you set up a dummy account?
call me stupid but would this work? key logger or something?

---

that records their action on the server