Blog Search
Like Box
Comments
- Dreamhost hacked, mass password-reset issued | ZDNet on DreamHost Security Issue Prompts FTP Password Resets
- Experiences with using GoDaddy, Linux Web Hosting | The (Unorganized) Musings of a Computer Scientist on GoDaddy store your passwords in clear-text and may try to SSH to your VPS without permission
- » Wordpress Security Best Practices & Plugins on Timthumb.php Mass Infection – Aftermath – Part I
- WordPress.org repository will not show plugins older than 2 years on WP-phpmyadmin WordPress plugin – Delete it now
- Wordpress News - The Best WordPress Tips and Tutorials of 2011Wordpress News on Cleaning up an infected website – Part I: WordPress and the Pharma Hack
Tags
alexa apache ask awareness backdoors blacklist blacklisted bluehost dns fox georgia godaddy google guides hacked history honeypot htaccess iis joomla logs malware malware_updates netsol openx oscommerce ossec passwords pharma phishing plugin review sbn scan security spam stats sucuri twitter vbulletin virus vulnerability walmart whois wordpressArchives
- January 2012 (6)
- December 2011 (4)
- November 2011 (4)
- October 2011 (7)
- September 2011 (8)
- August 2011 (16)
- July 2011 (5)
- June 2011 (10)
- May 2011 (10)
- April 2011 (15)
- March 2011 (18)
- February 2011 (13)
- January 2011 (7)
- December 2010 (7)
- November 2010 (9)
- October 2010 (12)
- September 2010 (10)
- August 2010 (7)
- July 2010 (10)
- June 2010 (15)
- May 2010 (19)
- April 2010 (16)
- March 2010 (15)
- February 2010 (8)
- January 2010 (7)
- December 2009 (4)
- November 2009 (1)
- October 2009 (2)
- September 2009 (1)
- August 2009 (6)
- July 2009 (11)
- June 2009 (7)
- May 2009 (4)
- April 2009 (1)
Monthly Archives: May 2010
SEO SPAM network – Code used and more details
Lately we have been talking a lot about WordPress sites getting hacked with SEO Spam: 1-SEO SPAM network – Details of the wp-includes infection2-It is not over – SEO Spam on sites infected Some big sites got infected and the … Read more
SEO SPAM network – Details of the wp-includes infection
We have been digging lately in a large SEO SPAM network which is using thousands of compromised sites to increase their page rankings and spread malware. They are similar to the one we reported earlier affecting lean.mit.edu, but this time … Read more
XSS on oswd.org (Open source Web design) used by spammers
http://www.oswd.org/ (Open Source design) is a popular web site used for sharing templates and web designs. They have a strong and active community and we actually used that in the past when looking for templates. However, we started to notice … Read more
Here we go again – Problem at GoDaddy continues
Update from GoDaddy: Less than 200 accounts hacked this morning as they were able to contain it before it spread. On their own words: Compromised Website Update 5/20/10 – An attack impacting less than 200 accounts happened this morning. Go … Read more
All the sites at the Walmart Community network hacked
We posted a few weeks ago that the main site for the Walmart community network was hacked. Well, the problem is a lot bigger than that. They have web sites for different cities and most of them are hacked too. … Read more
Lean.mit.edu hacked and serving spam
Interested in Viagra, Cialis and some other “magical” medications? It seems that the MIT web site for the Lean Advancement Initiative (http://lean.mit.edu/ ) knows a bit about it: Joking aside, they got hacked and are being used to serve a … Read more
Continuing attacks at GoDaddy – Losotrana.com
And it is still not over. Remember the code we found last week that was hacking all the PHP files at GoDaddy? It is still happening, but now using the losotrana.com domain ( http://losotrana.com/js.php ). This is the script that … Read more
Reply from GoDaddy regarding the latest attacks
GoDaddy just sent us an update. I am glad they are now acknowledging that they have a problem and are looking to fix it. They didn’t give more details to avoid revealing too much and helping the attackers. No more … Read more
It is not over – SEO Spam on sites infected
Did your site got hacked on the last 3 or 4 weeks? If it did, you may still have some things to clean up. We lately started to notice in a lot of sites that we have been fixing a … Read more
Found code used to inject the malware at GoDaddy
Update: Reply from GoDaddy: http://blog.sucuri.net/2010/05/reply-from-godaddy-regarding-latest.html While GoDaddy was busy blaming its users, one of our friends, K evin Reville, got tired of getting hacked and setup a cron script to monitor his site and alert him when new files were … Read more
