Attack on Web 2.0 Exemplar: WordPress 2.1.1

Funny, I was just blogging about emerging threats in Web 2.0. Well, here's an example of an attack on a stalwart of the Web 2.0 concept, live and all: WordPress 2.1.1 has been declared dangerous after an attacker broke into the servers and modified the code base, inserting malicious code that allowed for remote code execution. This does not appear to be a "web as platform" class attack so much as a server-side code abuse attack. Really, the attack itself seems mundane. However, given the popularity of blog software, with huge growth due to social networking, this attack is amplified because of the Web 2.0 movement. fwiw. :)



About this Entry

This page contains a single entry by Ben Tomhave published on March 4, 2007 9:17 AM.

New Threats in Web 2.0 was the previous entry in this blog.

March 4th, And I Did is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Monthly Archives

Pages

  • about
Powered by Movable Type 6.3.7