Arstechnica had an article about wordpress sites being infected by malware. Check it out
Apparently there are some vulnerable plugins but no one is sure which ones. So keep an eye on your website and make sure google doesn’t blacklist you.
If you’ve got some technical skill, installed the wordfence plugin and have it run a scan. The free version of wordfence is awesome and does a TON of stuff for you like keeping an eye on your plugins and comparing them against the repository versions. So if one of your plugins gets changed, it’ll let you know.
If you’re on something like hostgator, then you NEED to install this plugin. I found some extra files in my folder and with wordfence it was easy to detect.
Oh, and it’s loads of fun when ukrainians get locked out trying to guess my password. Wordfence lets you lock out anyone who tries to use an unregistered username and you can set how many password retries they get.
The premium version lets you block countries from accessing your site. I’ve had some visitors from ukraine and russia that I’ve blocked. Like Skinny Pete says “If there’s one thing I know, it’s never to mess with mother nature, mother in-laws and, mother freaking Ukrainians.”
