Moloth - The M-Forums

Russ · 6/2/08 11:33 am

Looks like WordPress was hacked again and every single .php and .html file was altered. I've been busy all morning restoring the site from the backup but it's taking a while. Forums are restored for the most part right now, some image attachments aren't in place yet but should be soon. Once everything's restored I'll see what needs to be done to patch WordPress.

Moloth · 6/2/08 11:35 am

AH.

right at a domain transfer.. >_<

geez.

in any case, thank you very much for your efforts, Russ!

Russ · 6/2/08 12:14 pm

Site's back up now, and I checked already and you seem to be using the latest WordPress version. I'll have to do some more investigating to see if I can find out exactly how it happened. But for now, it's bean time.

Russ · 6/2/08 1:38 pm

I think everything's ok, most likely most of the files were planted via RFI when the site was hacked pre-2.5.1, most of the timestamps on the files were before this morning.

Moloth · 6/2/08 1:41 pm

weird.

Is Wordpress really this unsecure?

Russ · 6/2/08 1:46 pm

Well like anything, it needs to be kept up to date with the latest releases.

http://wordpress.org/development/2008/04/wordpress-251/

Version 2.5.1 of WordPress is now available. It includes a number of bug fixes, performance enhancements, and one very important security fix. We recommend everyone update immediately, particularly if your blog has open registration. The vulnerability is not public but it will be shortly.

Cin · 6/2/08 2:03 pm

"not public?"

Let me go check FARK.

spooki · 6/7/08 12:53 am

It probably wasn't public when it was posted in April. wink

Moloth - The M-Forums

#1 6/2/08 11:33 am

Hacked again

#2 6/2/08 11:35 am

Re: Hacked again

#3 6/2/08 12:14 pm

Re: Hacked again

#4 6/2/08 1:38 pm

Re: Hacked again

#5 6/2/08 1:41 pm

Re: Hacked again

#6 6/2/08 1:46 pm

Re: Hacked again

#7 6/2/08 2:03 pm

Re: Hacked again

#8 6/7/08 12:53 am

Re: Hacked again

Board footer