ForexInsomniac
Forum Replies Created
-
Also, the site hosting company’s response was that WP isn’t secure and it’s not their problem. The installation was running the latest version of WP and all plugins.
Hi. The hacker didn’t access the site with a UN/PW. There is no Admin username. I’m running WordFence, and got this message this morning:
Wordfence found the following new issues on [site name].
Alert generated at Wednesday 3rd of July 2013 at 11:33:32 PM
Warnings:
* Modified plugin file: wp-content/plugins/anti-spam/js/anti-spam.js
* Modified plugin file: wp-content/plugins/anti-spam/readme.txt
* Modified plugin file: wp-content/plugins/backwpup/readme.txt
* Modified theme file: wp-content/themes/twentyeleven/languages/twentyeleven.pot
* Modified theme file: wp-content/themes/twentytwelve/languages/twentytwelve.potThe modification to Anti Spam included a reference to your “Filenames to Latin” plugin. Unfortunately, I didn’t think to save the changed code before restoring the plugin to the version you have here in this repository.
Hope this is helpful….
PS. If there is a way to move this conversation to the support threads, I will try to help you do that, if you would like.
I’m not saying that your plugin was the reason my site was hacked. I am saying that your plugin was one of the plugins that was modified by the hackers.
I’m sorry that I posted this as a review instead of a support post, but I’m unhappy that your plugin was targeted by, and able to be changed by, the hacker.