Wordpress hacked
Link: Wordpress hacked
Matt Mullenweg, lead developer of the popular Wordpress blogging platform, inadvertently provided clues to a key password - allowing an authorised user full access to the Wordpress site.
The user simply posted a warning that the password had been easy to guess, rather than causing damage to the servers.
Although Matt Mullenweg has now corrected the issue, the incident underlines the importance of taking password protection seriously.
As posted previously on Platinax in Security begins with you, key recommendations for proper password management include:
1. Don’t tell anybody your password(s), or even drop clues
2. Make passwords difficult to second guess - acronyms are an easy way to do this
3. Use different passwords for different system, to limit damage if one password is compromised
4. Don’t leave passwords lying around
5. Provided temporary passwords to third-parties based on a different structure to your main password
Although the incident of Wordpress being accessed by a third-party ended happily in this instance, if a user with malicious intent accesses any system they can cause incalcuable damage.
