WordPress blog spreading virus
-
-
Tagged for Staff.
Here’s the result of the first report I ran on your site. http://sitecheck.sucuri.net/results/http://privatelo.wordpress.com/
Status: Website Defaced (hacked). Immediate Action is Required. -
Please subscribe to the thread so you are notified when Staff respond and please be patient while waiting.
-
-
-
Hi there,
Thank you very much for reaching out to us on this matter. We have temporarily suspended the site in question to prevent it from possibly spreading any malware.
Thanks again!
-
One of the selling features of WordPress.com is the security and that we can’t put junk on our site and that the sites here are extra secure – the report that @TT linked to is gibberish to me but lots of red warnings – so in small words – what got onto the site and what went wrong?
Wondering as before this the only thing someone could do is have links offsite to a bad web site – this sounds like someone got the bad stuff into a blog here
-
It means that someone got in, took down the contents that were already there, and posted something (unspecified) that the scanner recognized from other sites as a defacement; it could be image or text, but it also included a file known to be malware. It means the scanner recognizes this as something a known hacker or hacker crew has done on other sites.
Because it is on WordPress.com, it’s obvious to me that they did this by either gaining access to the blog holder’s account or email account OR by gaining access to a staff account.
If they had gained access to a staff account, they would have defaced many, many more sites than this. Therefore, they have access to the blog admin’s account and/or email account.
-
It’s more complex than a simple changing a hotlinked image, unless that scanner is way off-base. But I have seen malware spread through changing a hotlinked image. Viruses can be embedded in a jpg.
-
- The topic ‘WordPress blog spreading virus’ is closed to new replies.
WordPress.com Forums 