A LinkedIn engineer’s blog got hacked after a hacker exploited the site’s PHP back-end technology and uploaded a malicious PHP file. The hacker gained shell access to the web server and used the engineer’s username to attempt to brute-force login to an iMac on the same network.