Title: WP exploit? Last modified: August 19, 2016 --- # WP exploit? * [Aegaeon](https://wordpress.org/support/users/aegaeon/) * (@aegaeon) * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/) * This might be WordPress or it might be GoDaddy, but my WP 3.0.1 site hosted on GoDaddy was defaced yesterday by iSKORPiTX, along with thousands of others running WP on a linux server (with everything updated). Here is my post on it >> [http://netblog.aegaeon.ca/2010/10/30/iskorpitx-strikes-again/](http://netblog.aegaeon.ca/2010/10/30/iskorpitx-strikes-again/) Viewing 7 replies - 1 through 7 (of 7 total) * Moderator [Ipstenu (Mika Epstein)](https://wordpress.org/support/users/ipstenu/) * (@ipstenu) * 🏳️‍🌈 Advisor and Activist * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1746905) * it’s a server hack, not WordPress. * Change your passwords, for wordpress AND your server itself, including SQL. Look into hardening WP, but also contact go daddy about securing your server itself. * Thread Starter [Aegaeon](https://wordpress.org/support/users/aegaeon/) * (@aegaeon) * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1746910) * Thanks for the info! The GoDaddy reps thought it was WordPress, but I was leaning towards a GoDaddy issue (especially since the files were created by root). * Moderator [Ipstenu (Mika Epstein)](https://wordpress.org/support/users/ipstenu/) * (@ipstenu) * 🏳️‍🌈 Advisor and Activist * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1746916) * Hah, yeah, if the files are created by root, then it’s a server hack, and tell the reps to escalate. * Sadly, GoDaddy can be pretty dense about that stuff. * Thread Starter [Aegaeon](https://wordpress.org/support/users/aegaeon/) * (@aegaeon) * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1746941) * I checked a bunch of sites the sites that were listed to be compromised on the same GoDaddy servers as myself, and some were running Drupal or Joomla instead of WP. So I’m even more certain that GoDaddy did something wrong and WordPress is still awesome! * [Go Daddy](https://wordpress.org/support/users/gdhosting/) * (@gdhosting) * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1747069) * Aegaeon, * Just wanted to post a quick update regarding this. It is something we’re aware of and was not centralized to WordPress users or Go Daddy. At this time all issues regarding this should be resolved and content restored. Be sure to let our support team know if you’re still seeing issues with your account so we can assist in addressing them. We’ve posted further details on our site through the following URL: * [http://community.godaddy.com/godaddy/halloween-eve-hacker-quickly-thwarted/](http://community.godaddy.com/godaddy/halloween-eve-hacker-quickly-thwarted/) * ^Trevor * [dremeda](https://wordpress.org/support/users/dremeda/) * (@dremeda) * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1747321) * If you’re still experiencing issues, take a look at this post: * [http://blog.sucuri.net/2010/10/attacks-on-godaddy-sites-insomniaboldinfoorg-com.html](http://blog.sucuri.net/2010/10/attacks-on-godaddy-sites-insomniaboldinfoorg-com.html) * There is a script to fix if this is the attack that is affecting you. * Thread Starter [Aegaeon](https://wordpress.org/support/users/aegaeon/) * (@aegaeon) * [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1747326) * Thanks for the info! So iSKORPiTX could be doing all of these mass defacements on hundreds of different servers via the GLibC exploit? * Sorry for jumping to conclusions that it was specifically GoDaddy’s fault! Viewing 7 replies - 1 through 7 (of 7 total) The topic ‘WP exploit?’ is closed to new replies. ## Tags * [godaddy](https://wordpress.org/support/topic-tag/godaddy/) * [linux](https://wordpress.org/support/topic-tag/linux/) * In: [Requests and Feedback](https://wordpress.org/support/forum/requests-and-feedback/) * 7 replies * 4 participants * Last reply from: [Aegaeon](https://wordpress.org/support/users/aegaeon/) * Last activity: [15 years, 7 months ago](https://wordpress.org/support/topic/wp-exploit/#post-1747326) * Status: not a support question ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics