• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login

Walmart web site hacked and hosting spam

April 15, 2010David Dede

FacebookTwitterSubscribe

A few days ago someone contacted us asking for help to clean up their site. They got hacked and the attacker added a bunch of spam links to it.

We fixed it for them and we decided to search for more sites that were also infected. Our surprise: One of Walmart official web sites, www.walmartcommunity.com (for their Community Action Network) was one of the first results.

If you look at their source page you will see all the spam links:

Die, Mommie, Die! download movie..
Lethal Weapon 2 download movie..
Black Rain download movie
The World Is Not Enough download movie
..

Checking their site with our malware scanner we noticed that all their pages have these spam entries:


It means that the attackers probably injected the spam in one of their templates files. After a bit of search, we found all of them inside the footer.php:

We tried to contact them, but only got their automated response (web site help), so hopefully with this post they will fix it. They are running WordPress 2.8.4, which is not that old, so I am assuming they got hacked via stolen FTP/SSH credentials or something like that.

As always, if you need help to recover from a malware/hacking attack or need someone to monitor your web site for these issues, visit http://sucuri.net or just send us an email at contact@sucuri.net.

FacebookTwitterSubscribe

Categories: Website SecurityTags: Hacked Websites

About David Dede

David is a Security Researcher at Sucuri. He spends most of his time dissecting vulnerabilities and security issues. You won't find him on Twitter because he is paranoid about privacy.

Reader Interactions

Comments

  1. t0ka7a

    April 20, 2010

    Hello,
    your articles are pretty good… Thanks for your work. I added your RSS to my bloglist. I would appreciate if you did the same with mine (if, of course, it is worth) http://infond.blogspot.com
    please, don't validate this commentary 🙂
    Bests,
    t0ka7a

  2. Philip

    June 2, 2010

    how many hours does it take to get you done this kind of articles? Any idea there?

    Philip
    Web Based Application Development

  3. http://sucuri.net

    June 2, 2010

    Philip: You mean how long it takes for us to fix a site infected? Generally a few hours…
    thanks,

  4. zma

    November 5, 2011

    hey! very interesting post! 

    zma

  5. iphone developer center

    April 6, 2012

    There are lots of haclers who can do even more… 

  6. marketing consultants

    May 15, 2012

    Hi, interesting to know walmart website hacked means they dont have enough security of good quality website to save their website…

  7. John Hemmings

    July 2, 2012

    It will be a constant battle to stop hacking and spam.
    Iphone App Development Services

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.