Update (6-Oct-2011): This problem has been resolved and the warning has been removed from Google. We’re working with our WordPress host now on a detailed post-mortem. When that is complete, we’ll post it here.
This morning Google detected a piece of malware that had been injected into the spanning.com WordPress-based website. The malware has been identified and removed.
It’s important to note that while our public web site was affected, our application was not, and the Spanning Backup service (which runs on completely different infrastructure) was not compromised.
Chrome and Safari users visiting spanning.com saw a warning like the one shown here. A similar warning was included in Google search results. We’ve notified Google that the malware has been removed and are optimistic they’ll remove the warning soon.
The support staff at WPEngine, where we host our public web site, removed the malware and is currently investigating how it got there in the first place. As soon as we have a post-mortem we’ll post the details here.
Again, this issue pertains only to the spanning.com public website and had no effect on the Spanning Backup service. Spanning Backup was not compromised and all customer data remains completely secure.
If you have any questions, please don’t hesitate o contact us at support@spanning.com.
Thanks,
Charlie