Clook Status - Wordpress Vulnerability - IMMEDIATE ACTION REQUIRED

RESOLVED
This announcement has been resolved, no further updates are expected.

Wordpress Vulnerability - IMMEDIATE ACTION REQUIRED
IMPORTANT - Wordpress version < 3.9.2 vulnerable to compromise. Update IMMEDIATELY REQUIRED. If you have Wordpress version 3.9.2 or below installed anywhere on your website / account you need to take immediate action, otherwise your website and hosting account could be compromised and defaced, deleted, used to send spam or launch attacks against others which violates our acceptable use policy. If you are unsure if you run Wordpress, please consult your website developer(s). You can check if you have Wordpress installed yourself via http:///wp-admin - if this shows a login screen, then you have Wordpress. It is still worth consulting your web developers to ensure Wordpress isn't installed in another location such as /blog. If Wordpress IS installed, you will need to check the version. This can be done by the following two methods: ---- EASY: Log in to http:///wp-admin with your Wordpress login details and check the version in the bottom right hand corner. ---- ---- ADVANCED: Check the following file (wp-includes/version.php) and look for the version number inside the $wp_version string. This file can be accessed by File Manager inside cPanel, or by downloading and viewing it via FTP. ---- Any version that is 3.9.2 or below is susceptible to this attack and immediate action to updating Wordpress is required. Any version above 3.9.2 is NOT susceptible however updating to the latest version (4.0.1) does address a further 8 known security issues. If you have installed Wordpress via Softaculous (via cPanel) then you can visit the Softaculous panel in cPanel to install an update, otherwise you may be able to update via the Wordpress Admin interface at /wp-admin depending on the version of Wordpress currently installed. Please be aware that it is your responsibility to ensure that software is up to date on your hosting account. For the security report, please see: https://wordpress.org/news/2014/11/wordpress-4-0-1/ For various methods of updating Wordpress, please see: http://codex.wordpress.org/Updating_WordPress Please raise a ticket with us if you have difficulties in performing the updates. You are receiving this email because you are a listed contact for a Clook Internet hosting service.
Updated by Dan Miller on 21st Nov 2014 @ 09:42am

Wordpress Vulnerability - IMMEDIATE ACTION REQUIRED

*IMPORTANT* - Wordpress version < 3.9.2 vulnerable to compromise. Update IMMEDIATELY REQUIRED.

If you have Wordpress version 3.9.2 or below installed anywhere on your website / account you need to take immediate action, otherwise your website and hosting account could be compromised and defaced, deleted, used to send spam or launch attacks against others which violates our acceptable use policy.

If you are unsure if you run Wordpress, please consult your website developer(s).

You can check if you have Wordpress installed yourself via http:///wp-admin - if this shows a login screen, then you have Wordpress. It is still worth consulting your web developers to ensure Wordpress isn't installed in another location such as /blog.

If Wordpress IS installed, you will need to check the version. This can be done by the following two methods:

----
EASY:
Log in to http:///wp-admin with your Wordpress login details and check the version in the bottom right hand corner.
----

----
ADVANCED:
Check the following file (wp-includes/version.php) and look for the version number inside the $wp_version string. This file can be accessed by File Manager inside cPanel, or by downloading and viewing it via FTP.
----

Any version that is 3.9.2 or below is susceptible to this attack and immediate action to updating Wordpress is required. Any version above 3.9.2 is NOT susceptible however updating to the latest version (4.0.1) does address a further 8 known security issues.

If you have installed Wordpress via Softaculous (via cPanel) then you can visit the Softaculous panel in cPanel to install an update, otherwise you may be able to update via the Wordpress Admin interface at /wp-admin depending on the version of Wordpress currently installed.

Please be aware that it is your responsibility to ensure that software is up to date on your hosting account.

For the security report, please see: https://wordpress.org/news/2014/11/wordpress-4-0-1/
For various methods of updating Wordpress, please see: http://codex.wordpress.org/Updating_WordPress

Please raise a ticket with us if you have difficulties in performing the updates.

You are receiving this email because you are a listed contact for a Clook Internet hosting service.

Updated by Dan Miller on 21st Nov 2014 @ 09:42am

03300 885 250

Technical Infrastructure Status

We believe in full transparency, everything you see here is 100% live.

03300 885 250