"Matt Mullenweg, the 23-year-old who is the founding developer
of the open source blogging software WordPress, woke up in March to
find that disaster had struck. 'A cracker gained user-level access
to one of the servers that powers WordPress.org,' he later
explained on his blog. 'They modified two files to include code
that would allow for remote PHP execution.;
"What was alarming was that thousands of people were downloading
the code, believing it to be the latest--and so the most
secure--when in fact it was making their sites vulnerable to
attack..."