Ian Stewart posted on ThemeShaper.com Hacked about a a security issue he found in the theme, particularly in the sv_ss.php file located in the languages ( thematic/library/languages/ )
Ian recommends going to the WordPress theme directory and downloading the Thematic WordPress theme copy from there.
It is important to note that things like this DO occur and Ian did catch this hack and inform others about it. (Thanks Ian!)
Some suggestions for users even if they are not using Thematic:
1. Make sure your WordPress version is up-to-date. This is the first and best thing to do up front. You can also use secure or hardening methods to your WordPress if you want.
2. Make sure your theme version is up-to-date. Some designers do update and fix any bugs that come up.
3. Make sure your plugins are up-to-date. Some plugin developers do update. Word of caution. Newly updated plugins, you should hold off at least a week before installing in case the new version is incomplete or another bug issue comes up. This will prevent further headache.
Twitter Comment
#wp #wordpress: News: Hacking Found in Thematic Framework [link to post]
– Posted using Chat Catcher