Wordpress.com hands out coupons after password glitch

Wordpress.com hands out coupons after password glitch

Summary: Wordpress.com users are being told to change their passwords, after they were left in a "less secure format" for over a year.

TOPICS: Security

In the same week that WordPress announced that the blogging platform powers 14.7 percent of the top million websites worldwide, WordPress sent out an email to a segment of its hosted users asking them to change their passwords, amid a lax in security.

The email pointed to a security fix that has caused user passwords to Wordpress.com to be stored in a less-than secure way:

"We recently found and fixed a mistake that we'd like to tell you about. Passwords on WordPress.com are saved in a way that makes them extremely secure, such that even our own employees are unable to see your actual password – the one you enter to login to your WordPress.com account.

However, between July 2007 and April 2008, and September 2010 and July 2011, a mistake in one of our systems used to find and correct bugs on WordPress.com accidentally logged some users' passwords in a less secure format during registration."

Clear to state that there was "no evidence that this data was access maliciously or misused", it asked users to update WordPress passwords.

To apologise, WordPress included a coupon code for all users, to use on a custom domain, a design upgrade, VideoPress or for additional storage space.

WordPress -- as it stands -- is used by over 50 million people, either through downloads of the popular blogging software, or through the hosted Wordpress.com service. WordPress 3.2, the latest version of the software, has been downloaded over 5.3 million times.

However, WordPress has been the center of controversy surrounding vulnerabilities in its software. Exploits are regularly fixed -- with hosted WordPress blogs updating automatically.

On Friday, it was discovered that a WordPress plug-in exploit was used to attack a U.S. defense contractor. Over a gigabyte of emails and 'schematics' belonging to an unmanned drone manufacturer was stolen by hacktivist group, Anonymous.

A spokesperson for parent company Automattic confirmed the email as genuine, but declined to comment further.

Related content:

Topic: Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • RE: Wordpress.com hands out coupons after password glitch

    Sounds like they took a responsible approach. Given that Wordpress is free, the quality of the product is second-to-none.
    • RE: Wordpress.com hands out coupons after password glitch

      @Imrhien Agreed. Refreshing approach. Sony should take note.
  • RE: Wordpress.com hands out coupons after password glitch

    I found a hacher group, in youtube, where they explain themselves, type in their IP address shows San Francisco 3 w's Turkhackteam.net while I was shopping online. They blocked access to a business online, I tried Firefox 2.0-7.0 could not get passed it, same thing with Opera and Netscape, it redirected you to their page, IP Address of a place in Germany, where it was redirected, one computer I have did not redirect, until later. Look-up Tanaka and go the main directory in Google with 3 w's Tanaka-us.com they were showing how proud they were for blocked access. Now its doing better, I was able to get access without redirecting.
  • RE: Wordpress.com hands out coupons after password glitch

    Click over this link and find a new wordpress web banners http://www.apptha.com/category/extension/Wordpress/Apptha-Banner
  • RE: Wordpress.com hands out coupons after password glitch

    The comments on this post are informative and accurate. I will be following this thread to see what other think.

    What do people think about Wasting Paper. - In our opinion <a href="http://www.cheaphandtowels.co.uk/">Paper hand towels</a> are a much better option than electric hand fryers. You can get types of <a href="http://www.cheaphandtowels.co.uk/">paper hand towel</a> such as <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/C_Fold_Hand_Towels_1_Ply___3000_Per_Case__11320.html">cfold paper hand towels</a>, <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Z_Fold_Hand_Towels_1_Ply___3000_Per_Case.html">zfold paper hand towels</a>, <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/White_Interfold_Hand_Towels_2_Ply___3200_Per_Case.html">interfold paper hand towels</a>, <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/home.html">v fold hand towels</a>. It is also possible to buy <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Recycled_Green_C_Fold_Hand_Towels_1_Ply___2700_Per_Case.html">Recycled Paper Hand Towels</a> and <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Natural_C_Fold_Hand_Towels_1_Ply_2688_per_case.html">natural paper hand towels</a>. Other products used instead of hand dryers are <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Hygiene_Rolls_12_x_20__.html">Hygiene Roll</a>, <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Centrefeed_Rolls_2_Ply.html">Centrefeed Roll</a>, <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Kitchen_Roll.html">Kitchen Roll</a> and <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/White_Virgin_Tissue_Toilet_Rolls_36_x_320_Sheets.html">toilet Roll</a>. Centrefeed comes as <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/White_Centrefeed_Rolls_1_Ply___1800m.html">white centrefeed roll</a>, <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/Blue_Centrefeed_Rolls_1_Ply___1800m.html">blue centre feed roll</a> and <a href="http://www.cheaphandtowels.co.uk/paperhandtowels/White_Mini_Centrefeed_Rolls_2_Ply___Box_of_12.html">mini centrefeed roll</a>. These are environmentally friendly products which can be re used. If you are interested in <a href="http://www.cheaphandtowels.co.uk/">cheap hand towels</a> and <a href="http://www.cheaphandtowels.co.uk/">wholesale paper hand towels</a> this is a good company to use. Would you agree these are a better option than electric methods of hand drying.
    Steve Craig
  • Wordpress.com hands out coupons after password glitch

    I agree, sony should take note.

    <a href="http://www.ontimedeals.com/">Ontimedeals</a>