WordPress Users Be Aware of Fake WP Downloads
Written by Bec on December 1, 2008 – 8:00 AM -
As most of you probably already know, the release of WordPress 2.7 has been delayed. There is a 2.6.5 version available that addresses some security issues. And please take care when searching for WordPress downloads so that you do not end up on a fake WordPress site. Wordpresz.org looks like the WordPress site but isn’t.
This is just the first of what could be a run on fake sites that take advantage of your misspellings and spoofs the official WordPress site. Pay close attention to what site URL you are actually on after clicking any links, or type out manually http://www.wordpress.org/ and double check the URL before downloading anything from the official WordPress sites.
If you upgraded WordPress to 2.6.4, you are running a fake version. There is no WordPress 2.6.4. The latest version is 2.6.5. The version of WordPress you download has malicious code in the download that opens a backdoor to your blog.
Automattic is looking at ways to keep users informed and warned about these blog hack attempts, but paying attention to details is your best defense. Just check first and know what you are downloading, and from where, before risking your blog.
Related posts:
Tags: blog hack, fake downloads, Wordpress, wp
Posted in Security Issues, Wordpress | No Comments »
Leave a Reply
You must be logged in to post a comment.
