I keep a joomla web site around strictly for research purposes.
Recently got a small spat of new user e-mails that traced to that test site.
Interesting detail on the user accounts – they had some kind of a “public administration” flag turned on. Inside the web site (had been self-signup allowed) – they showed as standard non-admin. users.
No legitimate need for automatic signup on that test site. Disabled automatic for now. Also tried automated joomla update – it blew up & could only be repaired by clearing an install directory via ftp.
Maybe much ado about nothing but the hacker clowns are spending a lot more time trying to break into web sites than in the old days…
Comments are disabled for this post