Thread: WordPress -->> Check Your Themes Code... |
|
March 9th, 2010, 08:37 AM
|
|
ABW Veteran
Join Date: January 18th, 2005
Posts: 6,638
|
|
While I was trying to read a blog today, I noticed that a few seconds after the site load, that it was redirected to another side...
At first I thought it was my browser doing the redirect, but after a few checks and a fast View Source, I was able to see the javascript code, of the crook affiliate doing the hacking...
I already notified the site owner of the problem on their blog...
The hijacking of the original blog site start with something like this:
http : // 6933.33544.identifyplaces.com/jump2/?affiliate= xxxx&subid= xxxx&terms= keyword etc...
You can read more here: Website is being redirected
|
March 9th, 2010, 11:59 AM
|
|
ABW Ambassador
Join Date: January 17th, 2005
Location: Springfield, Missouri, USA
Posts: 3,205
|
|
Thanks for that link, Sal. I went there, read through the forum thread, and felt others might be very interested in one of the blogs linked to from that discussion. It has an excellent step-by-step discussion of cleaning up a hacked WP site:
http://smackdown.blogsblogsblogs.com...-installation/
That blog post is a couple of years old, but I think it still has some dead-on useful information if you find your WP site hacked.
__________________
Generate more fake news.
|
March 9th, 2010, 03:12 PM
|
|
SEO: A Specialty - Web Design: Slow or outsourced
Join Date: June 18th, 2006
Location: The Call is coming from Inside the House!
Posts: 1,332
|
|
Always update WP when you feel it is safe after a few weeks. Also dont run torrented plugins or plugins or themes you are not 100% sure of. Get them from WP site.
|
March 9th, 2010, 03:27 PM
|
|
ABW Ambassador
Join Date: May 30th, 2006
Location: Torrance, CA
Posts: 879
|
|
I had 2 wordpress blogs hacked in January, both using the same theme. They added javascript to header. php and they added themselves as an admin user. I re-loaded the theme, deleted the admin account, changed all passwords, and upgraded wordpress.
|
March 9th, 2010, 03:43 PM
|
|
ABW Ambassador
Join Date: January 18th, 2005
Location: Canada
Posts: 647
|
|
I normally use premium WP themes, but this may be of some use for those who use free themes.
|
March 9th, 2010, 03:57 PM
|
|
ABW Ambassador
Join Date: January 18th, 2005
Location: Nunya, Business
Posts: 23,591
|
|
Quote:
|
Originally Posted by kaizen
I normally use premium WP themes, but this may be of some use for those who use free themes. |
I use that for one of my blogs. While there might be some perfectly fine reasons for encrypted code and such (not sure), I'm just not taking the chance.
|
March 9th, 2010, 04:35 PM
|
|
ABW Ambassador
Join Date: May 11th, 2006
Location: Myrtle Beach SC
Posts: 704
|
|
Yep, got rid of all my free themes a while ago. I think paying a small fee for a premium theme is good for the peace of mind. Not that a premium theme can't get hacked if you don't keep your WP updated.
|
March 9th, 2010, 04:43 PM
|
|
Tax Paying Member
Join Date: November 14th, 2005
Location: I Pay Taxes In NC
Posts: 1,872
|
|
Quote:
|
Originally Posted by kaizen
I normally use premium WP themes, but this may be of some use for those who use free themes. |
I use all free themes but never use a theme until it is checked by "THIS".
Also use the security scan and listen to what it tells you.
__________________
You must climb this mountain. There is no elevator. ---- Don't stick your finger in the liquid nitrogen.
Carolina China
|
March 9th, 2010, 04:48 PM
|
|
Member
Join Date: January 16th, 2010
Location: VA
Posts: 77
|
|
Glad I stumbled upon this thread. I seriously didn't know that WP Themes could even be a potential problem for hijacked blogs. Such a shame, but I'm definitely gonna download TAC and check my new theme when I get it uploaded to my site as I usually use free themes.
|
March 9th, 2010, 05:03 PM
|
|
Moderator
Join Date: April 6th, 2006
Posts: 2,402
|
|
Thought I would add my two cents worth...
A couple of sites on different servers kept getting hacked - the same code being injected. Couldn't figure it out for the life of me.. and then.. it turned out to be a compromised ftp password!
Hacker logged in, kicked off script, then logged off.
Just a reminder to keep changing passwords! Wordpress and ftp...
|
March 9th, 2010, 08:53 PM
|
|
Comfortably Numb
Join Date: October 17th, 2005
Location: Bayou Country, LA
Posts: 3,431
|
|
I just installed TAC on one of my blogs, but I can't see any way to make it scan manually. Does it just work in the background with no news unless bad news?
Edit: Never mind I see it listed under Appearance.
__________________
|
March 9th, 2010, 08:56 PM
|
|
Tax Paying Member
Join Date: November 14th, 2005
Location: I Pay Taxes In NC
Posts: 1,872
|
|
John,
Dashboard
Appearance
Tac
__________________
You must climb this mountain. There is no elevator. ---- Don't stick your finger in the liquid nitrogen.
Carolina China
|
March 9th, 2010, 10:28 PM
|
|
Affiliate Manager
Join Date: September 23rd, 2007
Posts: 361
|
|
Funny, I just visited an old WP site of mine and it had the same hack. Cleaned it up and patched the security hole. Its a pain in the but.
|
 |
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
|
