I Got Hacked!

Corey Thompson sent me an email message this morning asking me about the popups on my website. I responded that I don't have any but I would investigate. Well, investigate I did and by checking file dates, I found the one file that somehow was altered to add an iframe to the top of the displayed page.

I found the iframe by viewing the browser source, but it took me more than an hour to find out which file had been altered. It was the WP-Cache configuration file. I checked the directory and file permissions. Everything was in order and I can't figure out how the file got altered. Well, I have an idea, but I have to wait and see if it happens again to confirm my suspicions.

Full Article Feed |

Summary Article Feed |

Comments Feed |

Full Articles by Email | Respond | Trackback URL

MrCorey on 2007-02-28 at 10:55 pm (Reply)

That was a really nasty infestation! I'm glad that you found the source! What you've done has sure sped up the page loading as well. I'm glad that I could point this out early for you, as nobody likes their site messed with!

There was something either on the Wordpress blog ( http://planet.wordpress.org ) or in the wp-testers mailing list. I'll try to see where it is because I think that there is a fix for the file. There's a vulnerability there, but I cannot remember what it was.
Lorna on 2007-03-01 at 6:39 am (Reply)

Keep us posted will you? I'm still considering whether I should install it, and after reading this post, maybe I should hold on to that idea a while longer.
RT Cunningham | Untwisted Vortex | Philippines on 2007-03-01 at 8:26 am (Reply)

I'll definitely keep you posted.

An American Living in the Philippines

I Got Hacked!