Use OptimizePress? PLEASE read....
This is a heads up to anyone that is using OptimizePress who hasn't upgraded to the latest version (1.44).....
Do it!
I just had one of my hosting accounts hacked and I'm 97% confident it was due to the verson of timthump.php that came with this theme. The timthumb.php file initially had security vulnerabilities which left my site (and many others!) open to attacks - a quick search and you can read about it.
Since this was discovered a new version of timthumb has been released and OP was updated. If you don't want to upgrade your version, then you can find a new version of just the timthumb file that you can overwrite the old one with...it takes two minutes - do it!
Now I should point out - it's not just OP that used this file! Other plugins and themes made use of it so you should run a quick search.
If you're using a hosting account that runs on cpanel, use the "file manager" and run a search for "timthumb" in the upper right corner where it says search all files. If it's there then you'll want to make sure you're using the latest version of the file.
I've never had my sites hacked before, and I'll tell you - I never want to go through it again! It wasted a lot of my time getting things back to "normal".
And I can't really be 100% certain that I've "fixed" it - it looks ok and I with the help of my host we've been able to find the files that were added or altered, but I'm still nervous.
So take the few minutes to check into this. I used to have the "it won't happen to me" mentality and now I feel like a moron. A big one!
Lastly, I want to point out I'm not blaming OP - it's a dynamite theme and they have updated it accordingly. However I'm sure many warriors who use this theme are using an older version that still carries the older timthumb file.
Do it!
I just had one of my hosting accounts hacked and I'm 97% confident it was due to the verson of timthump.php that came with this theme. The timthumb.php file initially had security vulnerabilities which left my site (and many others!) open to attacks - a quick search and you can read about it.
Since this was discovered a new version of timthumb has been released and OP was updated. If you don't want to upgrade your version, then you can find a new version of just the timthumb file that you can overwrite the old one with...it takes two minutes - do it!
Now I should point out - it's not just OP that used this file! Other plugins and themes made use of it so you should run a quick search.
If you're using a hosting account that runs on cpanel, use the "file manager" and run a search for "timthumb" in the upper right corner where it says search all files. If it's there then you'll want to make sure you're using the latest version of the file.
I've never had my sites hacked before, and I'll tell you - I never want to go through it again! It wasted a lot of my time getting things back to "normal".
And I can't really be 100% certain that I've "fixed" it - it looks ok and I with the help of my host we've been able to find the files that were added or altered, but I'm still nervous.
So take the few minutes to check into this. I used to have the "it won't happen to me" mentality and now I feel like a moron. A big one!
Lastly, I want to point out I'm not blaming OP - it's a dynamite theme and they have updated it accordingly. However I'm sure many warriors who use this theme are using an older version that still carries the older timthumb file.
VideoHero.com/win