Please Review Files For Hidden Code or Other Vulnerability
-
Hi, last week I started a support string because I was running into several issues and while inquiring about that, the same week we found an exact copy of my site in google search. Someone has already been helping me and explaining that I can’t do anything to prevent proxy sites from going up, even though it is an exact copy right down to the WordPress links, etc. in the footer. He has been very helpful but I have new questions and have discovered some new issues so am starting a new topic thread.
I understand better now and know that we cannot totally prevent the probability of anything published online from being republished without consent BUT my biggest concern has been the security of my site which currently is a WP hosted free site – we have purchased our own domain.
I was hoping that I could confirm that someone has actually reviewed the files and gone through to ensure that no malicious code or other hack has taken place in my site. I continue to be told that there has not been a hack. However, at this point I disagree.
My first question is about what third party cookies WP might use or allow on WP hosted blogs – there is a really strange cookie (third party) hitting my site which I have since blocked : static.olark.com – store js cookie.
My concern about this cookie now is that when I am signed into WordPress (that is when the cookie runs – not before) and when I open the browser console window when in the dashboard of my site, I see this event listener script from “olark” and I can see code inserted in the page as well as add event listener from the same source “olark” requesting html and there are css style sheet edits. Additionally in my contact form when viewing the console window there is a message from olark (a chat service provider) which I do not use and never have, and which appears to be hidden in the body of my contact form page. There is also miscellaneous words in spanish throughout…
Now I know you guys are developers and I know someone has already been helping me with related concerns but he alone has been helping me and I can’t post to my blog until I have some kind of confirmation about this. I also know I sound super paranoid and I would say that I am and it is now justified. Since my site is hosted through WP, no one else can help me, so please do not dismiss what I am saying until you at least look at the screen shots I have.
I need to know – I need a confirmation that my site has not been broken into, hijacked, hacked or some other threatening issue because I think it has, I think that is how the mirror site created the live copy of my site and I think I need your help to please review the files for my site to make sure every time I change my password I am not just passing it off to some thieves as well as the contact information of anyone who has contacted me through my sites contact form.
Please, please do review the files. I know I cannot prevent all people from republishing stuff. I know that. I know about two factor authentication and about creating strong pw’s. I have all of that implemented.
I just need someone to inspect my sites files and also is there any way to see the login activity to verify logins?
I did not login here all day – not until late this evening. If I could see a login audit list to ensure it says I have not logged in all day, that would help. I would really like to know what this cookie is as well as the olark script in my website and I would appreciate it even more if someone from support takes this seriously and actually looks at the files. I can’t do anything on my own or hire someone to do it. I do not have access to these files. But you guys do.
I really really appreciate a WP staff members help. Thank you so much for your time.
The blog I need help with is: (visible only to logged in users)
-
You have seriously not been hacked. Scam artistes steal content from blogs all teh time, and some people create mirrors in order to subvert censorship, like the Great Firewall of China. It is not necessary to hack a site in order to duplicate it.
But I’ll flag this for staff to answer your cookie question.
-
My first question is about what third party cookies WP might use or allow on WP hosted blogs – there is a really strange cookie (third party) hitting my site which I have since blocked : static.olark.com – store js cookie.
Olark is the service we use to provide live chat support to our users. I promise it is not malicious.
-
Okay… Thanks you guys. Appreciate it.
P.S. If I was a jerk to anyone last week while I have been crazy stressed about this – I apologize. Thank you for your help.
-
Security is an important issue, It’s understandable to get worked up about it. I’m glad we were able to solve most, if not all, of the mysteries.
- The topic ‘Please Review Files For Hidden Code or Other Vulnerability’ is closed to new replies.
WordPress.com Forums 