Understanding and Cleaning the Pharma Hack on WordPress
David Dede This post is very specific to one type of infection, there are many different types of infections and symptoms, do not be discouraged if the…
Browsing Category
WordPress Security
672 posts
Cleaning SPAM from your WordPress blog.
Daniel Cid A common trend lately is SPAM getting added to WordPress blogs. Attackers are using this to increase their page rank on search engines like Google,…
WordPress user: Be careful where you get your theme from
WordPress themes are not just design templates, they contain PHP code and must be validated before use. Not only because of bugs, but some may…
Last week attacks – Some comments and updates
Last week as a busy one. First, thousands of GoDaddy sites got hacked with that kdjkfjskdfjlskdjf.com malware. A few days later, hundreds of Network Solutions…
Simple cleanup solution for the latest WordPress hack
Updated 20160914 This post is very specific to one type of infection, there are many different types of infections and symptoms, do not be discouraged…
New attack today against WordPress
Update 2: Simple clean up solution: https://blog.sucuri.net/2010/05/simple-cleanup-solution-for-latest.html Update 1: Note that we are not blaming WordPress here. I am assuming that if the problem was…
Details on the Network Solutions / WordPress mass hack
Update 1: The attack continues! Now they are using the domain http://mainnetsoll.com/grep/. Make sure to fix your wp-config and change your database password ASAP. Update…
Mass infection of WordPress blogs at Network Solutions
Since yesterday we are seeing a large number of WordPress blogs (running the latest version 2.9.2) getting infected with malware. None of them are using…
Removing Malware From a WordPress Blog – Case Study
This post is very specific to one type of infection. There are many different types of WordPress infections and symptoms, do not be discouraged if…
WordPress <= 2.8.3 Remote admin reset password
How to annoy a wordpress admin? By changing his password without confirmation… WordPress get_row($wpdb->prepare(“SELECT * FROM $wpdb->users WHEREuser_activation_key = %s”, $key)); if ( empty( $user…
Blog Security Stats – Taking almost 2k blogs to a security test
The goal of this research is to determine if bloggers are taking the security of their sites seriously. We focused on self-hosted WordPress blogs, since…