According to Weblog Tools Collection and the blog Unmask Parasites, there is a new version of the Gumblar botnet making the rounds on PHP based websites.
PHP is the programming language used to create many of the websites on the Internet including Wordpress sites. As the botnet attacks PHP specifically, WordPress itself is not to blame.
First heard of back in May, this malicious botnet was responsible for infecting a large number of PHP websites and now due to buggy code it is also capable of breaking Wordpress sites.
If you are worried about the security of your Wordpress site you should use the WordPress Exploit Scanner which scans for WordPress files for signs of suspicious activity. And if you have been infected by the Gumnblar bot then follow these detection and removal instructions.
It is also worth reading the offical Wordpress documentation on Hardening WordPress.
Posts