A little over a month from a series of DDoS attacks, the platform WordPress was again under attack by intruders.
This time, however, cyber criminals are not limited to making the site unavailable, but they managed to penetrate into different servers.
Worse, they managed to steal sensitive information and the source code.
By itself, since the software WordPress is open source, the theft of source code is irrelevant. However, with what result has been stolen data belonging to Automatic and partners, which poses potential security risks.
Given that the password may have been compromised, the first thing to do is for users of WordPress are to change your credentials for access, even at locations where the same password has been recycled.
The situation has now been restored to normal, but investigations into what happened continue.
Matt Mullenweg, Automatic president ensures that the company is taking the necessary steps to further improve safety.