shri - 11:16 pm on Sep 28, 2006 (gmt 0)

So, to start of, what can you do?

At the very minimum upgrade your software to the latest versions from the vendors. Include everything from the operating system to apache and php to the various modules you might have in your store.

Just last week we found an unpatched phpads on a server that was abused.

Also, one thing I've not been too sure of, we do not store credit card information. The only time a user enters a credit card is when they hit worldpay / paypal type third party screen?

Is it then a reasonable assumption that the credit card information is a little bit more secure than it would have been in our hands?