Timthumb (thumb.php) Security Flaw
I posted a thread earlier about this very serious hazard.
All my sites got hacked yesterday, so i did a lot of investigation. I managed to close the backdoor and got rid of the nasty infection.
Why do we not hear about this from AppThemes? They still did not update the timthumb.php file in there themes. This is really bad.
WooThemes reported about this security risk on the 4th of August. And also Wordpress warned people who use timthumb.
Timthumb (thumb.php) Security Flaw @ WooThemes
People, update your timthumb.php to the latest version
If you are already infected, delete all you .htaccess files, replace with authentic one and install and activate the BulletProof Security plugin
Now scan your site on Sucuri - Monitor & Scanner dashboard
to see if itīs clean.