A couple of days ago, someone uploaded a spam script to my web host using my account. My hosting service have, of course, deleted the script, but the question of how the spammers did it is still open. The normal explanation is a stolen password, but I had a secure password, and I don’t use it for anything else, or tell anyone what it is. I also use a secure connection to connect to the service. Thus, this is a bit puzzling. I’m currently checking for malware, but there isn’t much for the Mac or Linux in any case, and I am rather careful about that sort of thing.
So, the problem is that I really don’t know how this could have happened. Obviously, I’ve changed my password, but until I know what happened, I can’t rule out further problems. This may make it difficult to contact me by email, and may lead to my website vanishing briefly. I really hope not, but, as I say, I don’t know what’s going on yet.
Update: I’ve scanned my computer for malware, and there wasn’t any. Thus, I still don’t know how this happened. Obviously, that makes it hard to protect against it happening again. So, please let me know if you spot anything strange on the site.