The run down of the article is, Three people trying to access their Facebook profiles via their Nokia mobile phone ended up in three separate accounts that were not theirs.

They were not asked for login information of any kind, the fault was blamed on the AT&T network. However I find this to be of extreme concern.

For starters, why was their no Login prompt. Is this due to network operators caching data on their own servers. Which brings me to my concern, How many ISP’s are caching data that maybe they shouldn’t be.

Along with that, who else is viewing such cached data. I don’t want to get into a conspiracy theory debate but it does make me wonder just how secure our online accounts are and how often things like this happen and go un-reported.

How concerned are you about your accounts being viewed by other people even if by accident. After reading this I am mildly concerned but then I don’t publish too much personal information for such a reason

A stitch in time saves nine. I couldn’t sew my way out of a bag, but it’s true advice for bloggers as well — a little bit of work on an upgrade now saves a lot of work fixing something later.

Right now there is a worm making its way around old, unpatched versions of WordPress. This particular worm, like many before it, is clever: it registers a user, uses a security bug (fixed earlier in the year) to allow evaluated code to be executed through the permalink structure, makes itself an admin, then uses JavaScript to hide itself when you look at users page, attempts to clean up after itself, then goes quiet so you never notice while it inserts hidden spam and malware into your old posts.

VIA:  http://wordpress.org/development/2009/09/keep-wordpress-secure/

If you haven’t upgraded to WordPress 2.8.4 do it NOW. it could save you a lot of problems.