Hackers Infect WordPress 3.2.1 Blogs to Distribute TDSS Rootkit

• TA wrote on 2012-02-01 05:13

  Hackers are compromising WordPress 3.2.1 blogs in order to infect their visitors with the notorious TDSS rootkit, according to researchers from Web security firm Websense. It's not clear how the websites are being compromised, but there are publicly known exploits for vulnerabilities that affect WordPress 3.2.1, which is an older version of the popular blog publishing platform. 1
  
  Hundreds of websites based on WordPress 3.2.1 have been compromised so that surfers directed to the Wordpress-built sites via email links are exposed to the Phoenix exploit kit, M86 Security warns. A full-write up of the attack, including screenshots, can be found in a blog post by M86 Security here.

  
  Source
  
  I figure it might be important to you guys if you're running 3.2.1 blogs.