Why you should upgrade to Joomla 1.5.6...

[Juha-Matti Laurio <juha-matti.laurio () netti fi>]

...because Joomla.org was the target of these attacks too:

"This morning, Joomla.org was defaced a few hours after releasing our new design. This is not a new security issue, but 
only poor system administration practices on our part.
When we updated our Web sites with the Joomla 1.5.6 security fix released yesterday, we simply forgot to update one of 
our small, non-public development sites.
 
Now, we could offer many excuses why it was overlooked—we were focused on fixing this vulnerability, creating the 
packages, and getting the word out. But the truth is, there is no excuse."
--clip--

http://www.joomla.org/announcements/general-news/5202-why-you-should-upgrade-to-joomla-156.html

If you are not familiar with this case check CVE-2008-3681
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3681

And the download link:  http://www.joomla.org/download.html

Juha-Matti

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.