Blog‎ > ‎

Recent attacks on Wordpress blogs.

posted Jul 12, 2010, 4:35 PM by Eugene A   [ updated Jul 12, 2010, 5:36 PM ]
There have been multiple Wordpress blog hacks detected. If you notice your Firefox/Chrome browser comlained about malicious software on your blog, you are most likely the target. First check that your blog is calling external jquery.min.js script. Second step - check for JohnnyA, JohnnyB and amin users with admin privs and disable them. Then check which php files got edited recently and restore them. Look for recent changes in theme files, (esp links.php), look for strings like "<?php o='" at the beginning of the script. More information can be found here: http://weblog.mediatemple.net/weblog/2010/07/02/1378-compromised-sites/ and here http://blog.unmaskparasites.com/2010/06/14/attack-on-wordpress-blogs-on-rackspace/.
Comments