After asking for more info regarding the warning from Google, Stopbadware.org sent me a review of my website. It looks like I’d been hit by a WordPress xmlrpc exploit before I’d had chance to patch for it. Oops!

My transparent bridging post had been altered to include a bit of HTML code to call an external URL in an IFRAME. I’ve no idea what was on that page, but no doubt it was malicious content targeting unpatched web browsers.

This Stopbadware blog post has more info…

All clear now!…