WORDPRESS VULNERABILITY: Have you been hacked yet?

[Blaine Moore]

There is a hack going around that may or may not affect wordpress 2.5.1 blogs, but definitely affects all older versions. (There are known 2.5.1 blogs that are infected, but the general consensus is that they got hacked before being upgraded and carried the upgrade through.)

It is a very tricky problem. Basically, if somebody gets a search result in google and clicks through to your site, they are immediately forwarded to a spammer's site instead. A cookie gets dropped in the process, though, so that it doesn't happen a second time. This prevents site owners from noticing anything strange or troubleshooting it other than that google traffic begins to dry up. It can also lead to your site being temporarily delisted.

To see if your site has been hacked, clear the cookies on your blog (or use a computer that has never visited your blog) and do a search that returns a result that links to your page. Click the link. Did you wind up on your site? If so, you aren't being exploited right now and may not have been hacked. (Then again, you may have been.) If you do go to a scammer's site, you've definitely been hacked.

JD Roth has put up some good instructions for fixing your site, which you can read here:
Patching the WordPress AnyResults.Net Hack ∞ Get Rich Slowly

There is also a video that you may find helpful on YouTube:
YouTube - Remove Wordpress Spam Redirect

[Blaine Moore]

Here's another good article on the exploit:

Did your WordPress site get hacked?

[The Blogging Queen]

My membership site, which is run via WordPress was hacked about 4 months ago but more recently I discovered that an unused html page on my site had been hacked too ... seems it's not just wordpress.

Trish

[Blaine Moore]

Quote:

Originally Posted by The Blogging Queen

My membership site, which is run via WordPress was hacked about 4 months ago but more recently I discovered that an unused html page on my site had been hacked too ... seems it's not just wordpress.

Trish

There are plenty of exploits out there. I was just pointing out one specific one that is easy to prevent as long as you upgrade before you are hacked or else clean up the hack and upgrade so that you don't get hacked again.

[Joshua Houghton]

I actually got hacked a few weeks ago as they put thousands of words under my header all leading to some site. It sucks because I work so hard on my blog and stuff like that sets me back. It really is quite sad.

Joshua Houghton
Certified Hypnotist & Blogger

[quentin]

It is not just wordpress getting hacked but all manner of websites but especially those that us php source files.

The best thing to do is always keep your site updated and lock dit down with your HTACESS file.

Just do a search for your particular program and what it suggests for your htaccess file.

Quentin

[mintblogger]

We can avoid most of the hacking attempts by doing a secure installation of Wordpress. Check out this excellent post to secure your Wordpress installation.

Fighting Blog Hacks: Preventing And Eliminating Intruders | Lost Art Of Blogging

[CodrutTurcanu]

I never been... I make sure I keep my wp blog up to date and back-up everything... I use all kinds of plugins to save me time and avoid the hacks...

what about you?

[techknowl.com]

I have been a victim of Wordpress traffic redirection in one of my Blog . My blog's traffic was redirected to another site using a code execution in header.php . This happened when i changed my wordpress theme . Later , i shifted myself to Blogger . Now there's less hacking attempts .

[tmarek]

Haven't had my site hacked yet, but I have been able to crash it pretty good at times. :P

Thanks for the post Blaine, I'll keep those links in mind.