I've just recieved an email from someone letting me know that my rss feed had been taken over. I checked in the thumbs/rss/ folder and there are hundreds of files there, plus an actual blog like page in my rss. What the hell is this? How did it get there? And how can I make sure it never comes back?
Can you please do me a favor so that I can see what happened. I need a copy of your plogger files. You can just copy the plogger folder from your web host via ftp and then zip it. If you could also send me a dump of your SQL database, that should give me a starting point to see what files were changed. Please email it to 'security SPLAT plogger dot org' with the zip file and SQL dump attached and I'll take a look over it.
If your web host allows you to download or look at the access and error logs from the web server, you can also save them as text files so I can look for anything funny in there.
Also, if you could provide me with a link to your site so I can see the hijacked RSS link myself that would be great. You can email that as well if you don't want to post your URL to the boards.
I'll take a look to see if I can determine how they got in to your server. In the meantime, please check that you have updated your Plogger with the security patches and change your password if you have not already done so.