If you’re using Wordpress and aren’t at the latest version (2.8.4), it’s time to upgrade. There have been many cases lately of Wordpress blogs getting hacked by spammers who have been able to exploit vulnerabilities in older versions of Wordpress to inject malware into mysql databases, causing no end of time-consuming annoyance for the owners of the blogs. Some pretty famous bloggers have been hit by this.
For more information, see: http://lorelle.wordpress.com/2009/09/04/old-wordpress-versions-under-attack/ You can use http://ismyblogworking.com to test your Wordpress blog and get the version number.
If you’re reasonably up to date, there’s a link on your admin control panel that lets you upgrade automatically using your FTP login info – it’s pretty painless.
Wordpress is an excellent package and we encourage its use, but as with any piece of software, you can’t just install it and forget about it – you must keep it up to date. The best way to find out about updates is to watch http://www.wordpress.org.