We have reasons to believe that some user data on oxwall.org might have been compromised by a malicious third party through WordPress software. Right now the problem has been eliminated and security measured taken, however everyone on oxwall.org also needs to co-operate to stay safe.
- We strongly advise all Oxwall.org users to change their password;
- Developers and designers who have items in the Oxwall Store are also STRONGLY ADVISED to check their items’ data to be correct, including financial settings.
We will be monitoring website activity closely to prevent this from happening again and we appreciate your understanding.
P.S. Yes, you NEED to go change your password, like, right now.
Thanks i have change my password
I use Facebook connect. Do I need to change my Facebook password?
No. Facebook passwords are not affected. Facebook Connect mechanism doesn’t give away your password.
do you now believe me when i report about that my account opened and my paypal email replaced
i was the first one who reported that
now i want you to check oxwall forum, i think it has a malicious too
with my respect to oxwall devs, the malicious come from oxwall forum not wordpress software only
thank you for your efforts
Per our investigation we found out that those individuals uploaded executable code through WordPress.
Does this affect people who login using Facebook authentication?
what about if you used facebook connect to login ?
Do you need to change the original code of the site also admin ie
Does this affect the facebook passwords of those whose oxwall accounts are through facebook connect?
If they pass, then run the accumulator and pump related tests to see if they pass.