Twitter XSS Worm writer Mikeey gets hacked

[janitha]

I asked the guy who did this what the entry point was,

The file name was not guessed, it was a shell command injection on the website, doing a ls listed an interestingly named file "allinfo.txt". Looking at this, it had the ssh username/password...

[jerryji]

Cool, that's why it's called HACKER news here :)