This is my personal blog. I also have a professional blog at http://siliconsparrow.com/

10 February 2010

OMG, I’ve been hacked!

Filed under: General — adam @ 9:21 am

Apologies to anyone who has logged into this blog in the last few days only to find a link-farming spam page. Seems that someone has managed to pull off a script injection on this site. I’ve removed the offending code but I still have no idea how they managed it. I’m investigating…

4 Comments »

  1. Comment by George Campbell — 10 February 2010 @ 12:20 pm

    Let us know if you learn how this hack could have been prevented. (Maybe you’re a Toyota.)

  2. Comment by adam — 10 February 2010 @ 1:22 pm

    From the logs it looks like someone just came right in, logged into WordPress as administrator and changed the content of the site. I’ve no idea if they used an exploit or whether they managed to obtain my password somehow. The login was from Singapore.

  3. Comment by jankkhvej — 1 March 2010 @ 3:32 am

    There is a known bug in WordPress, AFAIK. Just look here: http://search.securityfocus.com/swsearch?sbm=%2F&metaname=alldoc&query=wordpress&x=0&y=0

    Always keep wordpress updated and secured: http://wordpress.org/development/2009/09/keep-wordpress-secure/

  4. Comment by David Mohr — 12 April 2010 @ 3:27 am

    when you figure it out. how about a refresher on how to use “netsh”

RSS feed for comments on this post.

Leave a comment

COMMENTS ARE DISABLED DUE TO EXCESSIVE SPAM. I'm sorry about this, I really love to read your comments but the amount of time I spend deleting spam is too much.

Powered by WordPress