[alphadog]

So certain WordPress plugin trunks ( AddThis, WPtouch, or W3 Total Cache) were compromised? That blog posts seems very vague on the details.

Just enough FUD to scare both the novice and the advanced users.

Any core committers care to comment here?

[nacin]

Three plugins were compromised through author accounts, which we caught pretty quickly. New versions were quickly pushed out. We're still investigating what happened, and reset passwords in an abundance of caution.