Security update and 15% off upgrade coupon from WordPress.com

WordPress Aug 20, 2011 2 Comments

I received this e-mail from WordPress today. It seems that hackers have been able to breach WordPress.com security and hence this e-mail.

At first I thought it was spam so I carefully examined the sender e-mail, sender’s IP address and the link. All seemed to be genuine.

Any way just to be on safe side I didn’t click on the link mentioned in the e-mail but I directly visited WordPress.com and logged in from there. Then from dashboard I changed password. And indeed there was a message saying to change password.

So if you have received such e-mail from WordPress.com then beter change your password now. An to be on safe side don’t click on the e-mail but visit WordPress.com login and then change password.

WordPress.com is offering 15% off on WordPress.com store which I wouldn’t be using.

Ajay,

We recently found and fixed a mistake that we’d like to tell you about. Passwords on WordPress.com are saved in a way that makes them extremely secure, such that even our own employees are unable to see your actual password – the one you enter to login to your WordPress.com account. However, between July 2007 and April 2008, and September 2010 and July 2011, a mistake in one of our systems used to find and correct bugs on WordPress.com accidentally logged some users’ passwords in a less secure format during registration.

We’ve updated our systems to prevent passwords from being logged this way in the future, so this will not happen again. We don’t have any evidence that this data has been accessed maliciously or misused, but to be on the safe side we are resetting your password since your account is among those affected.

Please change your password using this link or copy and paste the URL below into your web browser:

https://wordpress.com/wp-login.php?action=rp&key=dfdfdsff&login=myusername

If the password you used when you registered on WordPress.com was one you use elsewhere, you should change it there, too. In the future, remember that it’s good practice to always use unique passwords for different services.

We are terribly sorry about this mistake. No one likes having to create new passwords and we’d like to include a 15% off coupon to say we’re sorry. The coupon can be used for a custom domain, a design upgrade, VideoPress, or a storage space increase. Just use the code below on any of the upgrades on the WordPress.com Store:

somecode

If you have any questions, please reply to this email and one of our Happiness Engineers will get back to you as soon as possible.

Thank you,
The WordPress.com Team

WordPress WordPress.com | Thanks for flying with WordPress!

Comments

2 Responses to “ Security update and 15% off upgrade coupon from WordPress.com ”
  1. Strauss

    I also received the same e-mail few days back. I deleted it immediately thinking that it is spam. I didn’t realize that WordPress.com could be breached.

    Thanks to your post, I’ve now changed my password.

    • Ajay

      I also, almost, ignored it, however when i quickly checked the domain of the link mentioned then I decided to investigate further.

Leave a Reply to Strauss