Getting a Flash-update redirect from my login link on wordpress.com?

  • Unknown's avatar
    dantestella · Member ·

    I am getting a redirect to a non-legit Adobe Flash update site from the Login link on my wordpress DOT COM account. Sorry to shout, but I saw this problem dismissed as an open-source code issue on the forums before. It’s not. It’s on the wordpress.com-hosted sites as well. Any ideas on how to eliminate this? I assume this is a WordPress corporate issue. Plugging the page into virustotal does not show anything, which tells me it is chimeric and possibly that it is coming in with ads placed by WordPress.com?

    The blog I need help with is: (visible only to logged in users)

  • kokkieh · Staff ·

    Hi there,

    What login link exactly is redirecting you to Adobe?

    WordPress.com login links are not specific to individual sites. We only have a main account login page at https://wordpress.com/log-in, and once you’ve logged in there, you’re automatically logged into the dashboards of all sites in your account.

    Are you referring to the link in the Meta widget on your site’s sidebar?

    Clicking that when viewing your site in an incognito browser window takes me to the WordPress.com account login screen at https://wordpress.com/log-in without any redirect to third party sites.

    What browser are you using? Please check if you have the same issue if you use a completely different browser, or incognito/private mode. If not, it’s possible that malware in your browser itself could be redirecting you.

    I assume this is a WordPress corporate issue.

    Not sure what you mean here. WordPress is not a corporation. It’s free open source software made by the community on WordPress.org and managed by a non-profit foundation.

    WordPress.com is a for-profit hosting provider which belongs to a private company. We use the WordPress software, but we’re not the same thing as that software.

  • Unknown's avatar
    vheissu1974 · Member ·

    I’ve been seeing something similar. I was *not* logged into my wordpress.com dashboard when I visited my site (thefinchandpea.com) when I clicked on some of the navigation menu links. I was redirected to a fake Flash update site at deej.almeusciu.site. It didn’t happen every time, but every few clicks I was redirected.

    I’m running Safari 12.1.2 on OS X. I changed my WP password immediately, but because I have limited access to my site CSS and no capacity to install plugins without upgrading to the business plan, I can’t tell whether there is malware in my CSS.

  • staff-blorbo · Staff ·

    Thanks for the info, we’re looking into this now!

  • The topic ‘Getting a Flash-update redirect from my login link on wordpress.com?’ is closed to new replies.