Enjoy unlimited access to all forum features for FREE! Optional upgrade available for extra perks.
Sedo.com

Wordpress site hacked... please help!

Status
Not open for further replies.
PeterMan

PeterMan

Level 8
Legacy Exclusive Member
Joined
Aug 16, 2005
Messages
1,518
Reaction score
1
Update:
ok, so I just found all of the links in my footer.php file, so I am guessing this means that someone hacked in and accessed the files and also the ftp server ??

:-(


So I just got an email from Google mentioning that one of my sites is being removed from the index due to hidden text...

Sure enough, I check the source and a bunch of crap links have been injected into my site...

When I log in to the back end of WordPress I can't find the links in the actual page content or in the links section, has anyone had this happen before?

The code has this before the links:

<!--linksb-->
<b style="display:none">

and this after:

<!--linkse-->


Any thoughts?

I just made sure my WordPress install was up to date and I changed the password on the main account...

:upset:
 
Last edited:
A

actnow

Level 9
Legacy Exclusive Member
Joined
Mar 19, 2003
Messages
4,868
Reaction score
10
Can you tell us more, just for our own education.

I know some of the freebie templates are not always free because of this type of threat.
But, you are saying they hacked in?
Or, they already knew there was a backdoor?
 
T

tekz999

Guest
Which FTP program are you using to upload files?
Are your anti-spyware anti-malware anti-virus internet security suite up-to-date?
 
PeterMan

PeterMan

Level 8
Legacy Exclusive Member
Joined
Aug 16, 2005
Messages
1,518
Reaction score
1
ok, so I was able to fix this and I am now 99% sure what happened...

When you create a WordPress site you get an "admin" account and a randomly generated password. You should ALWAYS change the password and it is alco a good idea to create a new account altogether, so do not use admin at all... I know this but in thia case I did not make this change...

What the "hackers" do is they use their own password generator script which would likely be the same as what WordPress uses and they then use some program to brute force the site... once they get in they can change whatever they want in the "Edit Themes" section... So no ftp access was actually required to change the file...

So the lesson learned (which I already knew) is that you should never use the default admin account to manage your WordPress site...

I am lucky they didn't do much worse...
 
imneazmh

imneazmh

Level 5
Legacy Exclusive Member
Joined
Jan 31, 2009
Messages
346
Reaction score
2
I think that changing theme would be ultimate solution in this case. In future, please use wp themes from authentic sites whether free or paid. Remember, all free themes are not good.
 
Status
Not open for further replies.

Similar threads

HelloThere
Web3 Making Web 3 Domains Useful?
Replies
0
Views
297
HelloThere
HelloThere
A
Websites AntiguaBarbuda.info - Small Website Indexed Since 2010 - Country Name From Caribbean Islands
Replies
2
Views
2K
AlexBT
A
it.com
it.com What is a Drop Domain and How to Choose One
Replies
0
Views
241
it.com
it.com
DigitalSplendid
Websites DigitalSplendid.net: Leverage rich content, affiliate partnerships, and e-commerce integration
Replies
0
Views
1K
DigitalSplendid
DigitalSplendid
A
Please make our cartoon with me :)?
Replies
3
Views
2K
austynstuff
A

The Rule #1

Do not insult any other member. Be polite and do business. Thank you!

Members Online

Total: 785 (members: 2, guests: 783)

☆ Premium Listings

Sedo - it.com Premiums

IT.com

Premium Members

UKBackorder
Get a .HipHop domain

Latest Comments

Spread the Word!

MariaBuy

New Threads

Our Mods' Businesses

UrlPick.com

*the exceptional businesses of our esteemed moderators

Top Bottom