Hi, guys.
We suffered minor vandalism on the site at about 6:00 a.m. CST today. Apparently a fairly prolific hacker, perhaps an Indonesian hacking consortium, tagged us. In response, we've changed all of our internal passwords (they're now, Chip assures me, "mile-long strings of characters") and our ISP has completed security scans of the site. In short order, they're going to rollback the site to what existed last night. That means that any changes (both posts and hidden code) over the past 12 hours or so will disappear. We regret the inconvenience, but we're trying to be exceedingly careful.
I'll ask Chip to update you once we have more complete info.
David
Comments
Thanks for the heads up.
Also I still see a "hacked by " link on the main page.
It's almost identical to what happens on the side of train cars or highway underpasses.
The ISP is still working on the rollback.
Sorry to hear this David - And at a bad time with Chip temporarily down.
If the hackers do get your password from this site and you have used it on other sites, you could be at risk.
Changing passwords is a good idea in any event.
Some mutual fund sites require a new password every 6 months.
All best to Chip. A tough development.
So far as we can tell, nothing's at risk. We don't collect any personal or tracking information about anybody, other than the email address you sign up with. We channel contributions, including those in support of MFO Premium, through sites with far better security resources than we could ever afford, so there's no financial data anywhere here.
It literally looks like this group breaks into sites, announces their presence (you can Google their name to see a list of who they've tagged) and goes.
We're still trying to answer the "how did they get into WordPress?" question, but we may never know for sure since there's an entire underground industry devoted to challenging their software. It's the software behind 76 million websites, nearly a quarter of the planet's total, so it's also an understandable target.
We'll get back to cleaning up the mess and getting February posted, but the need to do the security changes is slowing us.
Be well!
David